Skip to content

Team Management

!!! info "TL;DR" Invite team members, assign roles (Owner, Admin, Member), and manage access from Admin → Settings → Team Members. Admins can triage feedback, create surveys, and manage GitHub integration. Owners have full control over team and org settings.

Team Roles

Access to the Admin Dashboard is controlled by the team_members table. Each user is assigned a role that determines their permissions.

Role Definitions

Role Permissions Use Case
Owner Full access: manage team, change settings, delete org, view audit logs Founder, CTO, Head of Product
Admin Triage, surveys, GitHub integration, analytics, moderation Product Manager, Engineering Lead
Member Triage feedback, post official comments, view read-only analytics Support Engineer, Junior PM

Only one user can be the Owner. Owners can transfer ownership to another team member.

Permission Matrix

Action Owner Admin Member
Triage submissions
Change submission status
Post official comments
Create surveys
Publish surveys
Push to GitHub
View analytics ✅ (read-only)
Bulk actions
Invite team members
Remove team members
Change org settings
View audit logs
Delete org

Inviting Team Members

Step 1: Send Invitation

  1. Navigate to Admin → Settings → Team Members
  2. Enter email address
  3. Select role (Admin or Member)
  4. Click Send Invitation

The invitee receives an email with a link to accept the invitation.

Step 2: Invitation Acceptance

The invitee clicks the link in the email and:

  1. Signs up for a Canviq account (if they don't have one)
  2. Accepts the invitation
  3. Is added to the team with the assigned role

Invitations expire after 72 hours. Resend expired invitations from Admin → Settings → Team Members → Pending Invitations.

Managing Team Members

Viewing Team Members

Navigate to Admin → Settings → Team Members to see all team members:

Name Email Role MFA Enabled Last Active Actions
Jane Doe [email protected] Owner 2 hours ago
John Smith [email protected] Admin 1 day ago Edit, Remove
Alice Lee [email protected] Member 5 days ago Edit, Remove

Editing Team Members

To change a team member's role:

  1. Click Edit next to their name
  2. Select new role (Admin or Member)
  3. Click Save

Role changes take effect immediately.

Removing Team Members

To remove a team member:

  1. Click Remove next to their name
  2. Confirm removal

The user loses access to the Admin Dashboard immediately. Their existing comments and status changes are retained on the board.

Audit Logs (Owners Only)

Owners have access to the full audit log, which includes security-relevant actions:

  • Team Changes — Invitations sent, members added/removed, roles changed
  • Settings Changes — Org name, branding, API keys, GitHub integration
  • Data Access — Who viewed sensitive data (e.g., user emails, survey responses)
  • Authentication Events — Logins, MFA setup, password resets

Navigate to Admin → Settings → Audit Log to view.

Audit logs are append-only (cannot be deleted) and retained for 2 years for compliance (SOC 2, ISO 27001).

Transferring Ownership

To transfer ownership to another team member:

  1. Navigate to Admin → Settings → Team Members
  2. Click Transfer Ownership (next to your name)
  3. Select new owner from dropdown (must be an existing Admin)
  4. Confirm transfer

You are demoted to Admin role, and the new owner has full control.

Offboarding Checklist

When removing a team member:

  1. Remove them from Admin → Settings → Team Members
  2. Revoke API keys they created (if any)
  3. Review audit logs for their recent activity
  4. Update GitHub integration if they were the connected account
  5. Optionally notify remaining team members

External Collaborators

Canviq does not currently support guest access or external collaborators. All team members must have full accounts.

For temporary access (e.g., contractors), create a Member account and remove them when the contract ends.

What's Next