Team Permissions
Team permissions control what actions users can perform on datastores and their associated data assets. Each team is assigned a single permission level that applies to all datastores assigned to that team.
Note
Admins are not subject to team permissions and can access all data assets. Team permissions only apply to users with the Manager and Member roles. For platform-level permissions, see the User Roles documentation.
Permission Hierarchy
Permissions follow a hierarchical model — higher permissions include all capabilities of lower permissions:
| Level | Permission | Includes |
|---|---|---|
| 5 | Editor | Editor + Author + Drafter + Viewer + Reporter |
| 4 | Author | Author + Drafter + Viewer + Reporter |
| 3 | Drafter | Drafter + Viewer + Reporter |
| 2 | Viewer | Viewer + Reporter |
| 1 | Reporter | Reporter only |
Permission Matrix
Legend:
- The permission grants the ability to perform the action
- The permission does not grant the ability to perform the action
| Action | Reporter | Viewer | Drafter | Author | Editor |
|---|---|---|---|---|---|
| Datastores | |||||
| View Source Datastore | |||||
| Preview Source Datastore | |||||
| Edit Datastore Settings | |||||
| Delete Source Datastore | |||||
| Multi-Schema Datastore Creation | |||||
| View Enrichment Datastore | |||||
| Preview Enrichment Datastore | |||||
| Delete Enrichment Datastore | |||||
| Operations | |||||
| View Activity | |||||
| Run & Manage Operations | |||||
| Schedule Operations | |||||
| Create/Delete Computed Asset | |||||
| Profiles | |||||
| View Profiles | |||||
| Delete Profiles | |||||
| Quality Checks | |||||
| View Checks | |||||
| Create Draft Checks | |||||
| Save / Restore Check to Draft | |||||
| Create / Edit Active Checks | |||||
| Activate / Validate Check | |||||
| Edit Check Metadata | |||||
| Archive / Delete Checks | |||||
| Dry Run Check | |||||
| Anomalies | |||||
| View Anomalies | |||||
| View Anomaly Source Records | |||||
| Change Anomaly Status (Acknowledge / Archive) | |||||
| Add Comment to Anomaly | |||||
| Tags | |||||
| View Tags | |||||
| Assign Tags to Assets | |||||
| Datastore Groups | |||||
| View Datastore Groups | |||||
| Assign Datastore to Group | |||||
| Field Status | |||||
| View Field Status | |||||
| Mask / Unmask Field | |||||
| Exclude Field | |||||
| Restore Field | |||||
| Delete Field | |||||
| Merge Fields | |||||
| View Masked Field Values |
Note
Manage Tags (create, update, delete) is controlled by the Manager user role, not by team permissions. Any user with the Manager or Admin role can manage tags regardless of team membership.
Individual Permissions
For detailed descriptions of each permission level, see the individual pages:
-
Editor
Full datastore management — enrichment, operations, computed fields, and field status.
-
Author
Quality check management — activate, validate, and manage check lifecycle.
-
Drafter
Check creation — create and save checks as drafts for future activation.
-
Viewer
Read access — view anomalies, source records, and add comments.
-
Reporter
Report access — dashboards, overviews, and analytical insights.