Managing Users & Roles
User types in DramWell, role-based access control, how to invite team members, and how to deactivate users who leave your organization.
Overview
DramWell uses role-based access control (RBAC) to determine what each user can see and do. Every user in your organization is assigned exactly one role. Roles are scoped to your organization — a user cannot access data belonging to another organization regardless of their role.
User Roles
| Role | Description |
|---|---|
| Owner | Full access to all settings, billing, and data. Can delete the organization. Only one Owner per organization |
| Admin | Full operational access, including user management and integrations. Cannot access billing or delete the organization |
| Manager | Can manage jobs, customers, invoices, and team schedules. Cannot manage users, billing, or integrations |
| Staff | Day-to-day operational access. Can view and update assigned work but cannot delete records or access reports |
| Technician | Field-focused role. Can view and update their own assigned jobs and log time and parts. No access to financial data |
| Viewer | Read-only access to operational data and reports. Cannot create, update, or delete any records |
Role Permission Matrix
| Capability | Owner | Admin | Manager | Staff | Technician | Viewer |
|---|---|---|---|---|---|---|
| View all jobs | Yes | Yes | Yes | Yes | Own only | Yes |
| Create / edit jobs | Yes | Yes | Yes | Yes | No | No |
| View all invoices | Yes | Yes | Yes | No | No | Yes |
| Create / send invoices | Yes | Yes | Yes | Yes | No | No |
| Manage users | Yes | Yes | No | No | No | No |
| Manage integrations | Yes | Yes | No | No | No | No |
| Access billing | Yes | No | No | No | No | No |
| View reports | Yes | Yes | Yes | No | No | Yes |
Inviting Team Members
- Navigate to Settings > Team.
- Click Invite User.
- Enter the person's email address and select their role.
- Click Send Invite.
The invitee receives an email with a link to set up their account and join your organization. The invite link expires after 7 days. You can resend or revoke pending invites from Settings > Team > Pending Invites.
New users are active immediately once they accept the invite and complete signup.
Changing a User's Role
- Go to Settings > Team.
- Find the user and click Edit.
- Select a new role from the dropdown.
- Click Save.
Role changes take effect immediately. The user's next action or page load will reflect the updated permissions — no re-login required.
Deactivating Users
When a team member leaves your organization, deactivate their account rather than deleting it. Deactivation revokes access immediately while preserving their historical records — jobs they created, invoices they sent, and time entries they logged remain intact and attributed to them.
- Go to Settings > Team.
- Find the user and click Deactivate.
- Confirm the action.
Deactivated users cannot log in. Their account is retained for audit purposes and can be reactivated at any time if needed.
Transferring Ownership
The Owner role can be transferred to another Admin-level user. This is required before the current Owner can be deactivated.
- Go to Settings > Team.
- Find the user you want to promote and click Transfer Ownership.
- Confirm by entering your password.
Your role changes to Admin immediately after the transfer.
Related Articles
Was this article helpful?