.png?width=300&height=77&name=black-logo%20(1).png)
Understanding Roles and Permissions
The descriptions below explain what happens when the toggle is turned ON (green)(Colour may vary depending on Custom Branding configurations):
Feature available on the Admin Web Dashboard ( π₯οΈ ) and/or Corfix Mobile App (π±)
Roles and Permissions are found in the Corfix Admin under;
My Account Details > Manage Roles.
General Permissions:
|
|
Description: |
|
|
Admin App Access |
Users can log in to the browser version of Corfix. |
π₯οΈ |
|
Mobile App Access |
Users can use the Corfix mobile app. |
π± |
|
View Cases |
Users can view Cases. |
π₯οΈ |
|
View Admin Dashboard |
Users can access the Dashboard. |
π₯οΈ |
|
View Payroll |
Coming soon: More features on the way β stay tuned! |
π₯οΈ |
|
View Projects outside of Groups |
Users can view Projects outside of their assigned group. |
π₯οΈπ± |
|
View Accounts outside of Groups |
Users can see Workers outside of their assigned group. |
π₯οΈπ± |
|
View Templates outside of Groups |
Users can fill out Templates outside of their assigned group. |
π₯οΈπ± |
Projects:
|
|
Description: |
|
|
View Projects |
Users can view the Project page. |
π₯οΈπ± |
|
View Private Project Data |
Users can see Project Private Information. |
π₯οΈπ± |
|
Add Project |
Users can add Projects. |
π₯οΈπ± |
|
Edit Project |
Users can edit Projects. |
π₯οΈπ± |
|
Delete Project |
Users can delete Projects. |
π₯οΈπ± |
|
View all Project Notes |
Users can view Projects that are not part of their assigned group. |
π₯οΈπ± |
|
Add Project Notes |
Users can view Workers who are outside of their assigned group. |
π₯οΈπ± |
|
Edit Project Note |
Users can edit notes on Projects. |
π₯οΈπ± |
|
Delete Project Note |
Users can delete notes from Projects. |
π₯οΈπ± |
Accounts:
|
|
Description: |
|
|
View all Accounts |
Users can view the Workers page. |
π₯οΈπ± |
|
View Accounts Sensitive Data |
Users can view sensitive Worker information. |
π₯οΈπ± |
|
Add Accounts |
Users can add new Workers. |
π₯οΈπ± |
|
Edit Accounts |
Users can edit existing Worker details. |
π₯οΈπ± |
|
Delete Accounts |
Users can delete Workers. |
π₯οΈπ± |
Tasks:
|
|
Description: |
|
|
View Tasks |
Users can view the Task page. |
π₯οΈπ± |
|
View All Tasks |
Users can view private Project information. |
π₯οΈπ± |
|
Add Tasks |
Users can add new Projects. |
π₯οΈπ± |
|
Edit Tasks |
Users can edit existing Projects. |
π₯οΈπ± |
|
Delete Tasks |
Users can delete Projects. |
π₯οΈπ± |
Templates:
|
|
Description: |
|
|
View Templates |
Users can view the Templates page. |
π₯οΈπ± |
|
Add Template |
Users can create new Templates. |
π₯οΈ |
|
Edit Template |
Users can edit Templates. |
π₯οΈ |
|
Delete Template |
Users can delete Templates.. |
π₯οΈ |
Forms:
|
|
Description: |
|
|
View Forms |
Users can view the Forms page. |
π₯οΈπ± |
|
View all Forms |
Users can view all Forms. |
π₯οΈπ± |
| Add Form | Users can access all Forms. |
π₯οΈπ± |
|
Add Form with any Signer |
Users can add other Workers to their Form. |
π₯οΈπ± |
|
Edit Form |
Users can edit any filled-out Form. |
π₯οΈ |
|
Delete Form |
Users can delete Forms. |
π₯οΈ |
|
Share Forms With GC |
Users can share Forms externally. |
π₯οΈπ± |
|
Can View All Private Forms |
When enabled, users with this permission can view all private forms, regardless of who created or signed them. When disabled, the user will only see private forms they have created or signed |
π₯οΈπ± |
Certifications:
|
|
Description: |
|
|
View Certifications |
Users can view the Certification page. |
π₯οΈπ± |
|
View All Certifications |
Users can view Certifications for all Workers. |
π₯οΈπ± |
|
Add Certification for Everyone |
Users can add Certifications for other Workers. |
π₯οΈπ± |
|
Edit Certification |
Users can edit Certifications they have access to. |
π₯οΈπ± |
|
Delete Certification |
Users can delete Certifications. |
π₯οΈπ± |
Binders:
|
|
Description: |
|
|
View Binders |
Users can view the Binders page. |
π₯οΈπ± |
|
View all Binders and Resources |
Users can view all Binders and Resources. |
π₯οΈπ± |
|
Add Binders and Resources |
Users can add new Binders and Resources. |
π₯οΈ |
|
Edit Binders and Resources |
Users can edit existing Binders and Resources. |
π₯οΈ |
|
Delete Binders and Resources |
Users can delete Binders and Resources. |
π₯οΈ |
Assets:
|
|
Description: |
|
|
View Assets |
Users can view the Asset page. |
π₯οΈπ± |
|
Add Assets |
Users can add new Assets. |
π₯οΈπ± |
|
Edit Assets |
Users can edit existing Assets. |
π₯οΈπ± |
|
Delete Assets |
Users can delete Assets. |
π₯οΈπ± |
Schedules:
|
|
Description: |
|
|
View Schedules |
Users can view the Scheduling page. |
π₯οΈπ± |
|
View All Schedules |
Users can view all schedules. |
π₯οΈ |
|
Add Schedules |
Users can add new schedules. |
π₯οΈ |
|
Edit Schedules |
Users can edit existing schedules. |
π₯οΈ |
|
Delete Schedules |
Users can delete schedules. |
π₯οΈ |
COR Audit:
|
|
Description: |
|
|
View COR Audits |
Users can view the COR Audit page. |
π₯οΈπ± |
| Add COR Audits | Users can add new COR Audits. |
π₯οΈπ± |
| Edit COR Audits | Users can edit existing COR Audits. |
π₯οΈπ± |
| Delete COR Audits | Users can delete COR Audits. |
π₯οΈπ± |
Reports:
|
|
Description: |
|
| View Reports | Users can view the Reports page. |
π₯οΈ |
| Add Report | Users can add new Reports. |
π₯οΈ |
|
Edit Report |
Users can edit existing Reports. |
π₯οΈ |
|
Delete Report |
Users can delete Reports. |
π₯οΈ |
|
Delete Project Note |
Users can delete Project Notes. |
π₯οΈ |
Roles:
|
|
Description: |
|
|
View Roles |
Users can view the Roles button. |
π₯οΈ |
|
Add Role |
Users can add new Roles. |
π₯οΈ |
|
Edit Role |
Users can edit existing Roles. |
π₯οΈ |
|
Delete Role |
Users can delete Roles. |
π₯οΈ |
Chats:
|
|
Description: |
|
|
View Chat |
Users can view the Chat page. |
π₯οΈπ± |
|
Create Chat Group |
Users can create a new Chat Group. |
π₯οΈπ± |
Group Permissions:
|
|
Description: |
|
|
Add Group |
Users can view private Project information. |
π₯οΈ |
|
Edit Group |
Users can add new Projects. |
π₯οΈ |
|
Delete Group |
Users can edit existing Projects. |
π₯οΈ |
Timekeeping Permissions:
|
|
Description: |
|
|
View all Time Cards |
Users can view all timecards. |
π₯οΈπ± |
|
Add Time Card |
Users can add their own timecard. |
π₯οΈπ± |
|
Add Time Card for Everyone |
Users can track hours for all workers. |
π₯οΈπ± |
|
Edit Time Card |
Users can edit timecards. |
π₯οΈπ± |
|
Delete Time Card |
Users can delete timecards. |
π₯οΈ |
|
Review Time Card |
Users can review timecards. |
π₯οΈ |
|
Edit Timekeeping Settings |
Users can edit Timecard settings. |
π₯οΈ |
|
Punch Location Exemption |
Users are exempt from location settings. |
π± |
Company Permissions:
|
|
Description: |
|
|
Edit Company Settings |
Users can edit company settings. |
π₯οΈ |
Integration Permissions:
|
|
Description: |
|
|
Add Integration |
Users can add an integration. |
π₯οΈ |
|
Edit Integration |
Users can edit an integration. |
π₯οΈ |
|
Delete Integration |
Users can delete an integration. |
π₯οΈ |
Departmental Access Strategy
By segmenting your roles by department, you ensure that employees aren't overwhelmed by features they don't use, while also protecting sensitive company data. Below are some ideas.
The Accountant Role (Timekeeping & Payroll)
Financial data is the most sensitive information in your system. This role should be "laser-focused" on the numbers.
-
Access: Full permissions for Timekeeping and Payroll reports.
-
Restriction: Restrict access to Project files, Safety Folders, or Worker Certifications unless they specifically impact payroll.
-
Benefit: The Accountant doesn't get distracted by daily progress photos or safety inspections, and field workers' hourly rates remain confidential.
The Project Manager Role (Projects, Forms & Scheduling)
PMs need a "bird's eye view" of the job site operations but rarely need to touch the backend accounting configurations.
-
Access: High-level access to Scheduling, Form Submissions, and Project Documentation.
-
Specifics: They should be able to create tasks, assign workers to schedules, and review/approve daily logs and EHS forms.
-
Restriction: Limit their ability to "Finalize" payroll or modify company-wide form templates to ensure data consistency across the whole company.
Why This Matters: The "Signal vs. Noise" Ratio
When a Project Manager opens their app, they shouldn't have to scroll past payroll tax settings to find their daily log. By configuring these "siloed" roles:
-
Data Integrity: Users canβt accidentally break a workflow they donβt understand.
-
Onboarding Speed: New hires learn the system faster because they only see 3 buttons instead of 10.
-
Security: You significantly reduce the risk of internal data leaks.
Other Best Practices
Audit Your "Admin" Roles
"Admin" is a heavy title in Corfix. True Admins can modify form templates, delete users, and change company configurations.
-
Limit Admins: Stick to 2β3 trusted individuals.
-
Use "Power Users": For people who need to manage data but shouldn't be touching the backend settings, create a custom role with high-level viewing and reporting rights instead of full Admin status.
Test Before Syncing
Before onboarding a whole crew, create a "Test User" account. Log in to the mobile app with that test account assigned to your new role to ensure:
-
The user can see the right forms.
-
The user cannot see sensitive info (like other people's pay rates or private HR documents).