Create and manage custom roles
Custom roles let you grant precise permissions instead of assigning full administrator access.
Build a role
- Open Settings → Team → Custom Roles.
- Select Create role.
- Enter a role name and description.
- Choose the permission set needed for that job function.
- Save and assign the role to teammates.
Permission design principles
Use these rules for safer access control:
- Grant minimum required permissions.
- Separate operational roles from configuration roles.
- Keep sensitive settings limited to trusted admins.
- Review role assignments on a fixed schedule.
Typical role patterns
- Support Agent Lead: conversation controls, reporting access, no billing/admin config.
- QA Specialist: conversation review plus selected analytics access.
- Operations Analyst: reporting and workflow visibility without user-management permissions.
Validate role behavior
Before broad rollout:
- Assign the role to a test user.
- Confirm visible menu items match policy.
- Attempt restricted actions to verify denial behavior.
- Adjust permissions and retest.
Warning: Do not use administrator role as a shortcut when a narrower custom role can solve the same need.
Related setup guides
📷 Image (optional): Custom role permission matrix
Why: Helps admins understand how role name, description, and granular permission toggles are configured together.
File:docs/images/custom-roles-permission-matrix.png
AI prompt: "Clean product documentation screenshot of OXVO Settings Team Custom Roles page with role list and an open modal showing role name, description, and grouped permission checkboxes; modern SaaS UI, neutral background, high-contrast typography, OXVO branding only, synthetic role names, no personal data, 1600x1000."