Managing staff permissions

Configure custom permissions for each team member, 22 categories, ~140 flags

Managing Staff Permissions

You can precisely control what each team member can see and do within your business account. The system includes 22 permission categories and nearly 140 individual settings covering every area of the business.

Permission Enforcement

Permissions are not just settings, they are automatically enforced across the entire system:

  • Navigation menu filtering: Staff members only see menu items they have permission for
  • Page-level protection: If a staff member tries to directly access a page they don't have permission for, an "Access Required" message appears
  • API-level protection: Backend endpoints also check permissions, unauthorized API calls result in a 403 Forbidden error
  • Owner and Manager: Always have full access, their permissions cannot be restricted

Accessing the Permissions Page

From the Staff Page (Recommended)

  1. Navigate to Team > Staff
  2. Select the Access & Permissions tab
  3. Find the staff member in the Staff Permissions list
  4. Click the Manage button next to their name
  5. The detailed permissions page opens with 22 sections

Direct Navigation

The permissions page is directly accessible at: /t/[slug]/staff/[staffId]

Permission Categories

Staff permissions are organized into 22 categories:

1. Login Access

The staff member's login method:

  • Email and PIN: Full login via email and PIN switching
  • PIN Only: Can only log in via PIN switching
  • No Login Access: Cannot log into the system

2. Locations

  • All Locations: Access to all business locations
  • Selected Locations: Access only to specified locations

Automatic Sync: If you assign a staff member to a location in Settings > Locations, their permissions are automatically updated.

3. Calendar

  • View type: Own calendar only or all team members' calendars
  • View only: Cannot create or modify appointments
  • Hide prices: Hide service prices in the calendar
  • Book, cancel, reschedule appointments
  • Apply discounts
  • Manage own / all blocked time

4. Dashboard

Access to the following elements:

  • Business overview
  • Staff overview
  • Goals
  • Activity feed

5. Sales

Access to the following features:

  • View sales (own / all)
  • Record sales
  • Apply discounts (cart / item level)
  • Process refunds
  • Void payments
  • Edit prices
  • Add tips
  • Handle cash payments
  • View daily sales
  • Export sales

6. Cash Register

  • View cash register
  • Open / close
  • Add transactions (deposits, withdrawals)
  • View transaction history
  • Cash register reports

7. Customers

  • Access level: Full, own customers only, or no access
  • View contact details
  • Block customers
  • Add photos
  • Access documents
  • Download customers (export)
  • Merge customers
  • Delete customers

8. Catalog

  • View / manage services
  • View / manage products
  • View / manage packages
  • View / manage memberships
  • View / manage gift vouchers
  • View / manage promo codes
  • View / manage dynamic pricing
  • View / manage add-ons

9. Group Classes

  • View / manage schedule
  • View / manage categories
  • View / manage class passes
  • View / manage outstanding balances
  • Group class settings
  • Check-in
  • Manage waitlists

10. Messages

  • View sent messages
  • Send SMS campaigns
  • View incoming messages
  • Reply to incoming messages
  • Incoming message settings

11. Marketing

  • View / manage email campaigns
  • View / manage SMS campaigns
  • Manage SMS credits

12. Reports

Access to the following reports:

  • Business reports
  • Financial reports
  • Appointment reports
  • Staff reports
  • View all team members' data
  • Export reports

13. Inventory Management

  • Access level: Full, limited, or no access
  • View products
  • Manage stock (receiving, adjustments)
  • View / manage suppliers
  • Bulk import
  • Bulk operations

14. Staff Management

  • View / manage own shifts
  • Manage all shifts
  • View / manage team members
  • Manage permissions
  • Manage closure days
  • Manage blocking
  • PIN switching settings

15. Online Booking

  • View / manage online booking settings
  • View / manage booking requests

16. Automations

  • View / manage automations
  • View automation logs

17. Integrations (Connect)

  • View integrations
  • Manage Booking Connect
  • Manage Web Connect
  • Manage Email Connect
  • Manage Calendar Sync
  • Manage Billingo Connect
  • Manage Szamlazz.hu Connect
  • Manage Analytics Connect
  • Manage Webhooks
  • Manage Telegram

18. AI Assistant

  • Use AI assistant
  • Manage AI settings

19. Reviews

  • View own reviews
  • View all reviews
  • Reply to reviews
  • Manage review settings

20. Loyalty Program

  • View / manage settings
  • View / manage points

21. Forms

  • View / manage forms
  • View responses
  • Fill out forms

22. Settings

  • Access business settings
  • Access account & billing
  • Manage locations
  • Manage resources
  • Manage payment settings
  • Manage calendar settings
  • Manage appearance

Saving Changes

Click the Save Changes button to apply the permissions. Changes take effect immediately, menu filtering and page-level protection are updated as well.

Quick Actions

Use quick actions for common settings:

  • Grant Access: Set basic permissions
  • Full Access: Grant all permissions
  • Revoke Access: Remove all access

Owner protection

The business owner's permissions cannot be modified. Owners always have full access to all features.

Use case scenarios

Scenario 1: New receptionist with basic access

New receptionist hires. Manager applies "Standard" template, granting booking, customer, payment access, no reports. One click, baseline permissions.

Scenario 2: Temporary manager privileges

Manager on vacation, senior stylist covers. Grant her only reports and schedule access temporarily. Revoke after 2 weeks.

Scenario 3: Stylist isolation

Competition among stylists. Each can only see her own bookings, not others' revenue. "View other staff calendar" permission off.

Scenario 4: Trainee restricted access

Trainee arrives. Calendar and customer search only, no payment editing, no reports. Mistakes minimized.

Tips

  • Templates first, manual fine-tuning only when needed: faster and less error-prone.
  • Audit every change: manager documents with note.
  • Review permissions periodically: role changes, departures.
  • Owner permissions always protected: by design, don't seek workarounds.
#permissions#access control#staff#security#jogosultság#granular#enforcement
Previous
PIN switching setup, fast user-switching at the till
Next
Permission templates
💬

Have a question? Ask the AI assistant

The Bookinda AI knows the entire help center and can answer in seconds.

B

Bookinda AI Assistant

Ask anything about features, settings, or integrations.

Hi! I'm the Bookinda assistant. I can answer questions about features, billing, integrations, and more. What would you like to know?

Still need help?

Get in touch with our support team.

Contact us