Team Roles
Affilync uses role-based access control (RBAC) to manage what each team member can see and do.
Role Hierarchy
Roles are ranked from most to least privileged:
- Owner -- full account control, including billing and deletion.
- Admin -- everything except billing and ownership transfer.
- Manager -- day-to-day operations (campaigns, affiliates, call flows).
- Analyst -- view-only access to data and reports.
- Support -- communications and call log access only.
A user can only assign roles at or below their own level. For example, an Admin cannot create another Owner.
Permissions Matrix
| Permission | Owner | Admin | Manager | Analyst | Support |
|---|---|---|---|---|---|
| View dashboard | Yes | Yes | Yes | Yes | Yes |
| View analytics | Yes | Yes | Yes | Yes | Yes |
| Export data | Yes | Yes | Yes | Yes | No |
| Create/edit campaigns | Yes | Yes | Yes | No | No |
| Manage affiliates | Yes | Yes | Yes | No | No |
| Approve/reject affiliates | Yes | Yes | Yes | No | No |
| Manage call flows | Yes | Yes | Yes | No | No |
| View call recordings | Yes | Yes | Yes | No | Yes |
| Manage AI Caller personas | Yes | Yes | Yes | No | No |
| Send affiliate messages | Yes | Yes | Yes | No | Yes |
| Create/revoke API keys | Yes | Yes | No | No | No |
| Manage integrations | Yes | Yes | No | No | No |
| Invite/remove team members | Yes | Yes | No | No | No |
| Change member roles | Yes | Yes | No | No | No |
| View audit log | Yes | Yes | No | No | No |
| Manage subscription/billing | Yes | No | No | No | No |
| Transfer ownership | Yes | No | No | No | No |
| Delete account | Yes | No | No | No | No |
Custom Roles (Enterprise)
Enterprise plans support custom roles:
- Go to Settings > Team > Custom Roles.
- Click New Role.
- Name the role and toggle individual permissions on or off.
- Save and assign to team members.
Custom roles appear alongside the built-in roles in the role selector.
Role Assignment
Assign at Invite
When inviting a new team member, select the role in the invitation form. The invitee receives the role upon accepting.
Change an Existing Role
- Go to Settings > Team.
- Click the three-dot menu next to the member.
- Select Change Role.
- Choose the new role and confirm.
Role changes take effect immediately. The member sees updated navigation and permissions on their next page load.
Best Practices
- Principle of least privilege: assign the minimum role needed for each person's job.
- Limit Owner and Admin count: only people who need billing or team management access.
- Use Analyst for stakeholders: investors, partners, or executives who need data but should not modify anything.
- Use Support for customer-facing staff: they can communicate with affiliates and review calls without changing configurations.
- Review roles quarterly: as responsibilities change, update roles accordingly.
Audit Trail
All role changes are logged in Settings > Audit Log with:
- Who made the change.
- What the previous and new roles were.
- Timestamp and IP address.