Permissions
When editing or responding to action items on assessments, owner, user, and grantee permissions vary based on those roles. The permission matrices below provide an overview of the different roles and their read-and-write access in Axio360.
The basic user concept differentiates between an owner-type vs. a grantee-type user. Going forward we will use Owner and Grantee respectively, where an owner is anyone who created an assessment or started a scenario collection in the separately licensed quantification module.
The company admin or group admin permissions are equal to and supersede the owner-type user permissions for all company instance resources and assets.
Inherited assessment parts, such as data on the evidence tab or action items are read-only and cannot be edited, independent of user permissions.
Entitlements per Role
The following table references assessments for brevity only. These entitlements carry over into other licensed modules of Axio360.
| Permission | Owner | Grantee | Grantee read-only | Auditor | Free User/Owner |
|---|---|---|---|---|---|
| Register as a user usually after initial admin registration and invitation to instance | ✔ | ✔ | ✔ | ✔ | ✔ |
| Create a free assessment | ✔ | n/a | n/a | - | ✔ |
| Create a licensed assessment | ✔ | n/a | n/a | - | - |
| Delete assessments | ✔ | - | - | - | ✔ |
| Edit assessments | ✔ | ✔ | - | - | ✔ |
| View assessments including all related response and informative data | ✔ | ✔ | ✔ | ✔ | ✔ |
| Share assessments | ✔ | - | - | - | n/a |
| View list of all company assessments | Admin only | - | - | ✔ | n/a |
| View list of all company users | Admin only | - | - | ✔ | n/a |
| Edit action items | ✔ | ✔ | - | - | n/a |
| Link evidence or external ticketing items | ✔ | ✔ | - | - | n/a |
| Edit due dates | ✔ | ✔ | - | - | n/a |
| Edit assignees | ✔ | ✔ | - | - | n/a |
| Edit responses | ✔ | ✔ | - | - | n/a |
| Mark action items complete/incomplete | ✔ | ✔ | only if assigned | - | n/a |
| Edit notes | ✔ | - | - | - | n/a |
| Edit help texts | admin only | - | - | - | n/a |
| Edit owner rational | ✔ | - | - | - | n/a |
| Edit applicability setting on shared assessments | ✔ | ✔ | - | - | n/a |
Where:
- n/a, indicates a not applicable use case for the role. For example, if a grantee is a fully registered user for a company instance, they become an owner for the new assessment or quantification scenario they create, while they remain a grantee on another assessment or quantification.