Role-Based Access Control

Role-Based Access Control (RBAC) in DMLY allows you to control what each team member can access and manage within the platform. By assigning roles, granular permissions, and workspace access, you can ensure secure collaboration without exposing unnecessary data or settings.

How Role-Based Access Control Works

When adding or managing a team member in DMLY, access is controlled through three layers:

1. User Access Role

2. Granular Access Restrictions

3. Workspace Assignment

All three must be configured correctly for effective access control.

User Access Roles

Each team member must be assigned a User Access Role. The role defines the user’s overall permission level.

Available roles include:

• Owner – Full control over the account and all workspaces

• Administrator – High-level access for managers and team leads

• Staff – Limited access for support or operational users

The selected role determines what features the user can see and manage.

Granular Access Controls

Granular Access allows you to further restrict what a user can access, even within their assigned role.

Available granular options include:

• No Application Access
  Prevents the user from logging into DMLY while keeping their account active.

• No Report Module Access
  Hides analytics and reporting modules from the user.

• Mask Contact Phone Numbers
  Displays masked phone numbers in conversations and contact lists to protect customer data.

These options are useful when onboarding support staff, external agents, or temporary users.

Workspace Assignment

Each team member must be assigned to at least one Workspace.

How Workspace Assignment Affects Access

• Users can only view and interact with workspaces they are assigned to

• Conversations, contacts, channels, and automations are isolated per workspace

• Users assigned to multiple workspaces can switch between them

Without workspace assignment, a user cannot access the system.

Adding a User with Role-Based Access

When adding a new team member:

1. Enter the user’s basic details (name, email, phone)

2. Select a User Access Role

3. Apply Granular Access restrictions if needed

4. Assign one or more Workspaces

5. Save the user

Access becomes effective immediately after activation.

Managing Role-Based Access

You can update role-based access at any time.

You can:

• Change a user’s role

• Enable or disable granular access options

• Add or remove workspace assignments

• Activate or deactivate a user

All changes take effect instantly.

Best Practices for RBAC

• Assign Owner access sparingly

• Use Administrators for managers and supervisors

• Use Staff roles with granular restrictions for support teams

• Assign users only to the workspaces they need

• Regularly review user access to maintain security