Teams & Permissions
Monitr uses a team-based access model. Users are members of one or more teams, and each team is assigned a set of permissions that control what its members can see and do.
Teams
A team groups users who need the same level of access. Common team structures:
| Team | Typical permissions |
|---|---|
| Finance | Full access — all reports, forecasts, settings |
| Management | Read-only access to reports and dashboards |
| External accountant | Read access to GL and reports, no settings access |
You can have as many teams as you need.
Creating a team
- Go to Teams in the sidebar (under More).
- In the "Teams" panel, click the Create team button.
- Enter a name for the team.
- Assign permissions (see below).
- Assign entities — optionally restrict the team to specific entities.
Inviting users
- Go to Teams in the sidebar (under More).
- In the "Teams" panel, click on the team you want to add the user to.
- In the "Users" panel, click the Invite users button.
- Enter the user's email address and select their role.
- Click Send invite.
The user receives an invitation email. They must register (or log in if they already have an account) and accept the invitation to join.
Users with pending invitations appear in the team list with a "Pending" status. Their access is not active until they accept the invitation.
Roles
When you invite a user to a team, you assign them a role from the Role dropdown. Each role is a preset bundle of permissions that controls what the user can see and do. The available roles depend on which team you're assigning the user to—different teams offer different role options.
Click the info icon (ⓘ) next to "Users" to see a description of each available role and its permissions.
Roles for the default team (Organisation Admins)
The default team is called Organisation Admins and is designed for organisation-level users. Three roles are available:
| Role | What they can do |
|---|---|
| Organisation administrator | Full access to all organisation and entity data. Can manage all teams, organisation settings, billing, and all entities. |
| Organisation reports with transactions | View all organisation-level reports, dashboards, consolidation data, and drill into transactions. Cannot edit organisation or entity data. |
| Organisation reports without transactions | View all organisation-level reports, dashboards, and consolidation data. Cannot drill into transactions or edit data. |
Roles for other teams
Other teams are entity-level and can include:
| Role | What they can do |
|---|---|
| Entity administrator | Full access to entity data. Can edit reporting structures, forecasts, adjusting entries, and entity settings. |
| Entity reports with transactions | View all entity reports and drill into transactions in the general ledger. Cannot edit entity data. |
| Entity reports without transactions | View all entity reports. Cannot drill into transactions or edit data. |
| Only receivables | View outstanding items (receivables) only. Cannot access other reports or edit any data. |
Entity assignment
Each team can be restricted to a subset of entities within the organisation. For example, a team managing only the Belgian subsidiary doesn't need access to the Dutch entity's data.
To assign entities to a team:
- Go to Teams in the sidebar (under More).
- In the "Teams" panel, click on the team you want to assign entities to.
- In the "Entities" panel, select which entities this team can access by checking the box next to each entity's name.
The default team
Every organisation has a default team called Organisation Admins. Newly added entities are automatically assigned to this team, ensuring at least one team always has access. The default team includes users who need organisation-level access (access to consolidation, organisation-level reports, and billing).
Removing a user
To remove a user from a team:
- Go to Teams in the sidebar (under More).
- In the "Teams" panel, click on the team the user is a member of.
- In the "Users" panel, click the Delete (trash can) icon next to the user's name.
- Confirm the removal.
If they're a member of multiple teams, they retain access through their other teams.
To fully revoke access, remove the user from all teams.
What users see in the sidebar
A user's sidebar adapts based on their role and entity assignment:
-
Organisation-level roles (only available in the default team): Users assigned "Organisation administrator" or organisation-level report roles see the Consolidation, Organisation Dashboard, and Organisation Reports links. They also see Settings, Billing, Teams, and Integrations.
-
Entity-level roles: Users assigned "Entity administrator" or entity-level report roles see Entity Dashboard, Entity Reports, Forecasts, and Reporting Structure links (if they have permission for those).
-
Entity assignment: If a user is a member of a team assigned to only specific entities, they only see those entities in the entity selector dropdown and can only access data for those entities.
For details on which role includes which features, see Permissions & Roles Reference.