Management Permissions
Management Mode > Organization > Management Permissions Newly added members are set to no management permissions by default, limiting them to general user functions such as clocking in, submitting requests, or viewing their own information.
- No Management Permissions: New members cannot perform management operations or access management mode.
- Permission Upgrades: If management permissions are required, the creator or super admin can manually assign roles such as Manager or Super Admin, or grant specific custom permissions based on the organization’s needs.
This setup ensures the security of organizational management by preventing unauthorized members from accessing system administration features.
Management Permission Levels
| No. | Permission Level |
|---|---|
| 1 | Creator |
| 2 | Super Admin |
| 3 | Custom Permissions (Manager) |
| 4 | No Management Permissions (General User) |
Management Permission Levels are divided into four tiers:
-
Creator
- Holds the highest level of authority with no functional restrictions.
- Responsible for establishing and managing the organization.
- Cannot be deleted or have the role transferred.
- Can assign management permissions to others, including promoting users to Super Admin or granting custom permissions (Manager).
-
Super Admin
- Has the same comprehensive functionality as the Creator, with no restrictions.
- Can assign or adjust other users’ management permissions.
-
Custom Permissions (Manager)
- Granted specific management rights such as access to groups, payroll, attendance, or personnel visibility.
- The scope of permissions is defined and adjusted by the Creator or Super Admin, making it suitable for managers with specific responsibilities.
-
No Management Permissions
- General user status with no management capabilities.
- Suitable for employees who only need to clock in, submit requests, or view personal data.
Permission Management Principles:
The Creator and Super Admin have full control to assign and adjust management permissions, ensuring clear authority distribution and maximum management efficiency within the organization.
Creator vs. Super Admin
The main difference between the Creator and Super Admin lies in control over roles:
-
Creator
- Holds unrestricted authority with access to all functions.
- Can remove Super Admins or modify their permissions.
- The Creator role cannot be deleted or transferred.
-
Super Admin
- Holds nearly identical functional permissions as the Creator, with full system access.
- Cannot delete or modify the Creator or their permissions.
This design ensures that the Creator always retains ultimate control over the organization, preventing accidental changes or disruptions in critical roles, thus safeguarding organizational stability.
Default Permissions
Management Mode > Organization > Management Permissions > Default | No. | Default Permission |
|---|---|
| 1 | Super Admin |
| 2 | Manager |
Default Permissions can be set as either “Manager” or “Super Admin” with the following differences:
- Manager: Granted limited management permissions within a defined scope, such as managing groups, personnel visibility, payroll, or attendance.
- Super Admin: Holds the same permissions as the Creator, with unrestricted access to all features, including organization data, personnel management, announcements, policies, and goal creation.
This setup ensures organizational flexibility by empowering Super Admins with comprehensive control while allowing focused delegation to Managers.
Assigning Management Permissions
Management Mode > Organization > Management Permissions To assign management permissions, follow these steps:
- Select a Member: Locate the individual to be promoted and enter their profile.
- Access Permission Settings: Click on the “Default” option in the top-right corner of the profile page.
- Choose a Role:
- Set as “Manager”: Assigns basic management permissions restricted to a defined scope.
- Set as “Super Admin”: Grants full organizational control with unrestricted access.
- Copy Permissions: For quick configuration, select Copy Permissions from another user to replicate their settings.
This feature streamlines permission assignment, offering both detailed customization and efficient role configuration.
Custom Permission Settings
Management Mode > Organization > Management Permissions The Custom Permission Settings feature allows precise allocation of management rights, ensuring that each manager operates within their designated scope. Assignable permissions include:
- Personnel Visibility: Controls whether a manager can view and manage all personnel or only those within specific groups.
- Organization Data: Grants viewing or editing privileges for organizational information.
- Groups: Allows managers to add, modify, or delete groups and their members.
- Personal Data: Provides access to view and manage employee profiles.
- Payroll: Controls access to payroll data for viewing or editing.
- Work Schedules: Enables the setting and adjustment of employee schedules.
- Performance: Manages employee performance evaluations and related records.
- Leave: Approves, adjusts, or views employee leave applications and balances.
- Attendance & Clock-in Records: Grants access to manage employee attendance and clock-in data.
- Add New Personnel: Allows adding new employees to the organization.
- View Seniority: Enables viewing of employee service tenure.
- Announcements: Allows publishing announcements to the organization.
- Policies: Permits creating and updating company policies.
- Goals: Facilitates setting organizational or departmental goals.
This feature provides flexibility in assigning management permissions while enhancing data security and operational efficiency.
| Feature | Permission Level |
|---|---|
| Personnel Visibility | Group|All |
| Organization Data | None|View|Edit |
| Groups | None|View|Edit |
| Personal Data | None|View|Edit |
| Payroll | None|View|Edit |
| Work Schedules | None|View|Edit |
| Performance | None|View|Edit |
| Leave | None|View|Edit |
| Attendance & Clock-in Records | None|View|Edit |
| Add New Personnel | None|Edit |
| View Seniority | None|Edit |
| Announcements | None|Edit |
| Policies | None|Edit |
| Goals | None|Edit |
- None: The manager cannot access this feature.
- View: The manager can view but not modify or delete data.
- Edit: The manager can view, modify, and delete data.
Personnel Visibility
Management Mode > Organization > Management Permissions > Personnel Visibility Personnel visibility can be set to “Group” or “All”, offering flexibility in adjusting a manager’s scope of view and authority:
- Set to “All”: The manager can view and manage all members in the organization, regardless of group.
- Set to “Group”: The manager’s access is restricted to personnel within specific groups, ensuring clarity and focus in their responsibilities.
To add or modify personnel within groups, navigate to Organization > Groups for adjustments, enabling dynamic organizational management.
| No. | Personnel Visibility |
|---|---|
| 1 | Group |
| 2 | All |
Creator Role Transfer
Currently, the Creator role cannot be transferred to another manager or deleted. Therefore, it is recommended to select a stable and reliable individual as the Creator to ensure uninterrupted organizational management.
If the Creator is likely to leave in the future, it is advisable to have a core member of the company, such as the founder, investor, principal, chairman, CEO, owner, or another key figure, establish a new organization and delete the old organization. This approach helps prevent future complications related to management permissions or system operations.
The Creator role cannot be transferred or deleted. This design ensures organizational stability and minimizes risks associated with changes in key management roles.
This manual strives for accuracy and completeness, but we do not assume any liability for errors, omissions, or updates. The content may be modified at any time without prior notice. We are not responsible for any damages arising from the use of this manual or downloading its contents, including but not limited to system failures, data loss, or infringement of rights. Users assume full responsibility and risk.