SolutionsMarketplaceDemosDevelopersPricingPartnersBlog
Permissions

Control who sees what.
Down to the field.

70+ granular permissions, four scope levels, field-level access control, and team-based data isolation — configure exactly who can see, edit, and manage every part of your application.

Set Up Permissions

4 levels of access control

Click a scope to see which records become visible. From full access to complete lockdown.

Company
Acme Corp
Globex Inc
Initech LLC
Stark Industries
Wayne Enterprises

All 5 records visible — full access to every record in the system.

70+ granular permissions

Switch between roles to see how permission scopes change across every action.

PermissionScope
Create Records All
Read Records All
Update Records All
Delete Records All
Manage Workflows All
View Reports All
Export Data All
Manage Users All

Control every field

Set per-field visibility and editability by role. Hide sensitive fields, lock down financials, or make everything read-only.

Name

Acme Corp

Email

contact@acme.com

Status

Active

Revenue ($)

$250,000

Phone

+1 (555) 123-4567

Internal Notes

Strategic account — NDA signed

Created Date

Jan 15, 2025

Editable Read-only Hidden

How field permissions work

Set access per field, per role

FieldAdminManagerSales RepViewer
Customer NameRead/WriteRead/WriteRead/WriteRead Only
RevenueRead/WriteRead/WriteRead OnlyHidden
Internal NotesRead/WriteRead/WriteHiddenHidden
Contract TermsRead/WriteRead OnlyHiddenHidden

Multi-role merge: most permissive wins

When a user has multiple roles, the highest access level applies per field.

Role A: Read Only+Role B: Read/Write=Read/Write ✓

Dynamic rules: permissions that adapt

Beyond static roles, dynamic rules change field behavior based on record data.

When Status = Approved

Make all fields read-only

Read-Only Rule

When Amount > $10,000

Require manager approval

Validation Rule

When Role ≠ Finance

Hide salary field

Visibility Rule

When record is created

AI auto-fills category from description

AI Rule

Data isolation by team

Team-scoped permissions automatically filter data so each team only sees their own records.

Sales Team

AliceBobCarol
Scope: Team

Support Team

DaveEve
Scope: Team

Management

FrankGrace
Scope: All

When scope = Team, each team sees only their data

Sales Team

Sales records only

Support Team

Support records only

Management

Everything

Secure API access

Scope API keys to specific permissions with wildcard support and rate limiting.

ak_*****************************3f9a

Wildcard support: entity.* matches all entity actions

Rate limit: 10 requests/min

Set up your permissions

Configure roles, scopes, and field-level access in minutes — no code required.

Get Started Free