Staff & Access Control4 min read
Roles & Permissions
Configure role-based access control in Jasiyo — understand default roles and permission levels for your team.
Jasiyo uses role-based access control (RBAC) to ensure staff members can only access the features relevant to their job. Roles are assigned when inviting a staff member and can be changed at any time.
The account owner (the person who signed up) always has full access and cannot be restricted. Only invited staff members have roles applied.
Default roles
Admin
Full platform access. Can manage all customers, routers, plans, payments, staff, settings, and billing. Suitable for business partners, senior managers, or technical staff who need full control.
Support
Customer-facing access only. Can add, edit, reactivate, and suspend customers. Can view transactions. Cannot access: payment provider settings, router configuration, staff management, billing, or system settings.
Permission matrix
| Feature | Owner | Admin | Support |
|---|---|---|---|
| View customers | ✅ | ✅ | ✅ |
| Add / edit customers | ✅ | ✅ | ✅ |
| Suspend / reactivate customers | ✅ | ✅ | ✅ |
| Delete customers | ✅ | ✅ | ❌ |
| View transactions | ✅ | ✅ | ✅ |
| Manage routers | ✅ | ✅ | ❌ |
| Manage plans | ✅ | ✅ | ❌ |
| Payment provider settings | ✅ | ✅ | ❌ |
| Staff management | ✅ | ✅ | ❌ |
| Billing & subscription | ✅ | ❌ | ❌ |
| System settings | ✅ | ✅ | ❌ |