# User Permissions
## Account Manager
In Cubicl, an organization account is created by a person. The person who creates the account and starts the trial becomes the **First Account Manager**. The first Account Manager has the following permissions:
* Add or remove members from the organization
* Grant or remove Account Manager permissions for other members
* Manage subscription and payment operations
* Manage pages such as clients, deals, and bookkeeping
* Create projects and add members to projects
People added by the first account manager as account managers also have the same permissions, except for "Manage pages such as clients, deals, and bookkeeping".
Every organization must have at least one Account Manager. If the first Account Manager grants another member the Account Manager role, the first Account Manager can then be removed from the organization. In this case, the Account Manager permissions transfers to the member who was granted the role.
Account Managers can perform the necessary actions from the **Organization** page.
### Organization Members / Users
People who are invited to the organization by an Account Manager and create a user account—but are not granted Account Manager permissions—are defined as **“users.”**
A person cannot access projects, tasks, messages, or any other content within Cubicl unless they are invited to the organization. In other words, they cannot sign in to the organization’s Cubicl account.
Account manager and user permissions can be viewed on the [Organization page](https://cubicl.io/org/overview).
## Project Permissions
Project permissions can be configured while creating a project or afterward through **Settings > Members**.
Permissions can be assigned for:
* Project admins
* Project members
* Non-members
* And individually per user
Permission levels are structured progressively as **None, View, Create, Edit, and Delete**. For example, a user with **Edit** permission can view, create, and edit content.
### Project Admins
Project Admins have full authority within a project. They can:
* Add or remove project members
* Grant or revoke project admin permissions
* View, create, edit, and delete all project content
Since projects follow a hierarchical structure, a project admin also has manager permissions for all subprojects linked to that project. For example, if a person is an admin in a parent project, they can access, view, or edit subprojects unless those subprojects are marked as private.
#### Project Admin vs. Account Manager
The **Account Manager** and **Project Admin** roles are completely independent from each other. This means a user may:
* Be both an Account Manager and a Project Admin,
* Be only one of them, or
* Have neither role and simply remain a regular user.
These roles do not interfere with each other; each provides its own permissions within its own scope.
### Project Members
Project members are users who have been added to the relevant project as a member. By default, they have permission to view and contribute content. You can change permissions for each page in the project later.
### Non-Project Members
These are people who are users in the organization but are not members of the relevant project. By default, they have permission to view the contents. Therefore, if you do not want non-project members to see the content, you should change the permissions to None later. You can change permissions for each page in the project.
### User-Based
You can set different permission levels for users in your projects. You need to select a user in the project permissions field to set permissions for that user. You can set user-based permissions to increase or decrease their permission levels.
If permissions are not set for a user, project permissions set for "Members" or "Non-Project Members" are used.
### Exceptions
Some users may have some exceptions depending on the situation. Even if a user does not have permission in a project:
* She can see the tasks assigned to her or created by her, post in these tasks, update the state and progress of the task, upload files.
* She can archive, edit, and delete tasks created by herself.
* She can delete activity posts created by herself.
## Page Permissions
You can set user permissions for all pages separately in Cubicl. You can make different authorizations for the Clients, Bookkeeping, Deals, Email Boxes, Forms, Workflows, Client Portal, Time Offs and Workflows pages. On these pages, permissions can be set for all users or specifically for each user.
To set up the same level of permission for all users, use the **Default Permission** field. But if you add different level permission to each member, use **User Permissions**.
The first account manager in the organization has full permissions. Other account managers will have the Default permission level unless a different setting is selected.
You can click the **User Permissions** button and edit the default and user-based permission levels, and then save them. The permission levels you save will only apply to that page.
## Permission List
To perform these actions, users must have the following minimum permissions:
| PROJECT PAGE | MINIMUM PERMISSION LEVEL |
| -------------------------------------------------------------------------------- | ------------------------ |
| **TASKS PAGE** | |
| Creating a new Task | Create and Contribute |
| Copying a Task | Create and Contribute |
| Archiving Task | Create and Contribute |
| Removing a Task from Archive | Create and Contribute |
| Exporting Task to Google Calendar | Create and Contribute |
| Changing the State of a Task | Create and Contribute |
| Deleting Task | Create, Edit and Delete |
| Moving a Task to Another Project | Create and Edit |
| Switching Task View Between Kanban and List | View |
| Changing Task Order by Priority and Due Date | View |
| Displaying Images on Tasks | View |
| Viewing Tasks by Assignee | View |
| Viewing Archived Tasks | View |
| **TASK FORM** | |
| Editing a Post Created by Someone Else (Task Name, Assignee, Date, Client, etc.) | Create and Edit |
| Adding a Workflow to a Task Someone Else Created | Create and Edit |
| Making a Task Created by Someone Else a Private Task | Create and Edit |
| Attaching Files to a Task Someone Else Created | Create and Contribute |
| Creating a Post to a Task Someone Else Created | Create and Contribute |
| Complete Substeps of a Task Someone Else Created | Create and Contribute |
| Adding a Subtask to a Task Someone Else Created | Create and Contribute |
| Sharing Task Someone Else Created with a Client | Create and Contribute |
| Adding a Form to a Task Created by Someone Else | Create and Contribute |
| Exporting a Task Created by Someone Else | Create and Contribute |
| Follow a Task Created by Someone Else | View |
| Tracking Time on a Task Someone Else Created | View |
| Deleting Someone Else's Activity Logs | Create, Edit and Delete |
| Deleting Files Uploaded by Someone Else | Create, Edit and Delete |
| **FILES PAGE** | |
| Viewing Files | View |
| Viewing the Total Size of Files | View |
| File Download | View |
| File Upload | Create and Edit |
| Creating Folders | Create and Edit |
| Rename All Files | Create and Edit |
| Moving File to Another Folder | Create and Edit |
| Deleting Files | Create, Edit and Delete |
| Deleting Folders | Create, Edit and Delete |
| **GANTT CHART** | |
| Viewing the Gantt Chart | View |
| All Changes on the Gantt Chart | Create and Edit |
| **TIMELINE CHART** | |
| Viewing the Timeline Chart | Everbody |
| **PROJECT CALENDAR** | |
| Viewing the Project Calendar | Everbody |
| **REPORTS** | |
| Viewing Reports | View |
| **SETTINGS PAGE** | |
| Viewing Project Admins and Members | Everybody |
| Adding and Removing Members from the Project | Project Admins |
| Making a Member a Project Admin or Making a Project Admin a Member | Project Admins |
| Changing the Project Name | Project Admins |
| Editing Project Permissions | Project Admins |
| Selecting Project Pages | Project Admins |
| Editing Task Stages | Project Admins |
| Creating Additional Task Form Fields | Project Admins |
| Adding the Estimated Duration Field to the Task Form | Project Admins |
| Enabling the Automatically Adding Working Hours on Task Forms Setting | Project Admins |
| Integrating the Project with Slack | Project Admins |
| Viewing Deleted Tasks in a Project | Project Admins |
| Exporting Project Tasks | Project Admins |
| Archiving a Project | Project Admins |
| Deleting Project | Project Admins |
| Creating, Editing, and Deleting Tags | Project Admins |
| NOTES: |
| ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| In projects, the permission levels are "None, View, Create and Contribute, Create and Edit with Create, Edit and Delete" for project members, non-members and users individually. |
| Exceptions: |
| 1. Even if users do not have required permission level in the relevant project, they can see tasks assigned to them, create posts in these tasks, update the states and progress of the task and upload files. They can archive, edit and delete tasks created by them and they can delete their posts under tasks. |
| 2. The Project Admin has all the permission on projects they are admin. |
| 3. If a Project is created as a Private Project, Non-Project Members will not be able to access any data. They can't even see the project name in the project list. |
| CLIENTS, DEAL AND BOOKKEEPING | MINIMUM PERMISSION LEVEL |
| ------------------------------------------------ | ------------------------ |
| **CLIENTS** | |
| Viewing Client Details | View |
| Viewing Activities on Clients | View |
| Inviting the Client to the Client Portal | Create and Edit |
| Uploading File to Client | Create and Edit |
| Adding Client | Create and Edit |
| Editing Client Information | Create and Edit |
| Importing Clients | Create and Edit |
| Adding a New Field to a Client | Create and Edit |
| Adding a Note to the Client | Create and Edit |
| Adding a New Task to a Client | Create and Edit |
| Adding a Portal Client Manager to a Client | Create and Edit |
| Deleting Client | Create, Edit and Delete |
| Editing User Permissions | Manage |
| Downloading/ Exporting Client List | Manage |
| **DEALS** | |
| Viewing Deals | View |
| Viewing the Deals Archive | View |
| Creating a Deal | Create and Edit |
| Changing the State of the Deal | Create and Edit |
| Archiving Deals | Create and Edit |
| Convert a Deal to Order | Create and Edit |
| Deleting Deal | Create, Edit and Delete |
| Changing Stage Settings | Manage |
| Editing User Permissions | Manage |
| **BOOKKEEPING** | |
| Viewing Bookkeeping | View |
| Creating Bookkeeping | Create and Edit |
| Editing Bookkeeping | Create and Edit |
| Adding and Deleting Payments | Create and Edit |
| Deleting Bookkeeping Entries | Create, Edit and Delete |
| NOTES: |
| ------------------------------------------------------------------------------------------------------------------ |
| The permission levels on these pages are "None; View; Create and Contribute; Create, Edit and Delete; and Manage." |
| These are the minimum required permission levels for the actions mentioned above. |
| OTHER PAGES | MINIMUM PERMISSION LEVEL | |
| ----------------------------------------------------- | ------------------------ | ---------------------------------------------------------- |
| **ORGANITAZION** | | |
| Adding and Removing Members | Account Manager | |
| Making a User Account Manager | Account Manager | |
| Buy or Cancel Subscription | Account Manager | |
| **FORMS** | | |
| Creating a Form | Create and Edit | |
| Deleting a Form | Create, Edit and Delete | Owner |
| **WORKFLOWS** | | |
| Creating a Workflow | Create and Edit | |
| Deleting a Workflow | Create, Edit and Delete | |
| **PROJECTS** | | |
| Creating a New Project | Everybody | Must have Project Admin authority on at least one project. |
| Editing Project Settings | Admin | |
| Adding and Removing Members from the Project | Admin | |
| Making a User Project Admin | Admin | |
| Deleting a Project | Admin | |
| **TIME OFFS** | | |
| Adding Time Offs | Create and Edit | |
| Deleting Time Offs | Create, Edit and Delete | |
| **CLIENT PORTAL** | | |
| Inviting a Client to the Client Portal | Create and Edit | This permission is granted on the Clients page. |
| Updating the Client in the Table | Create and Edit | This permission is granted on the Clients page. |
| Assigning a Client Manager to the Client in the Table | Create and Edit | This permission is granted on the Clients page. |
| Deleting a Client in a Table | Create, Edit and Delete | This permission is granted on the Clients page. |
| Logo Change | Account Manager | |
| Creating, Updating and Deleting Support Topics | Account Manager | |
| Updating Support Page Information | Account Manager | |
| Assigning General Client Managers | Account Manager | |
| Announcements > Creating a New Announcement | Account Manager | |
| **INTEGRATIONS** | | |
| Linking an Email Account to an Email Box | Everybody | The user's actions do not affect others' integrations. |
| Linking Individual Email Boxes | Everybody | The user's actions do not affect others' integrations. |
| Google Drive Integration | Everybody | The user's actions do not affect others' integrations. |
| Google Calendar Integration | Everybody | The user's actions do not affect others' integrations. |
| Slack Integration | Admin | |
| Webhook | Everybody | The user's actions do not affect others' integrations. |
| API | Everybody | The user's actions do not affect others' integrations. |
