# Roles & Permission

The Roles & Permissions tab defines how collaborators interact with dashboard content. This includes permissions to view, edit, delete, and manage dashboard access.

{% hint style="info" %}
A resource in this context refers to a dashboard—its layout, widgets, settings, and access controls.
{% endhint %}

Qubitro provides three default roles—**Read-Only**, **Read/Write**, and **Admin**—each granting a different level of access.

{% hint style="success" %}
If your plan or organization settings allow for custom roles, you can define additional role types with more granular permissions.
{% endhint %}

### Default Roles

#### Read-Only

Users can view dashboards but cannot make any changes.

{% hint style="info" %}
**Examples:**

* Can view the dashboard in View mode
* Cannot switch to Edit mode or update widgets
* Cannot access settings or sharing options
  {% endhint %}

#### Read/Write

Users can modify the dashboard layout and widgets, but cannot delete the dashboard or manage access.

{% hint style="info" %}
**Examples:**

* Can switch to Edit mode and configure widgets
* Can change layout and refresh settings
* Cannot delete the dashboard or invite collaborators
  {% endhint %}

#### Admin

Users have full access to manage the dashboard, including editing, deleting, and managing collaborators.

{% hint style="info" %}
**Examples:**

* Can delete the dashboard
* Can invite or remove collaborators and change roles
* Can update all general and configuration settings
  {% endhint %}

### Roles Reference

| Action              | Read-Only | Read/Write | Admin |
| ------------------- | --------- | ---------- | ----- |
| View Dashboard      | ✅         | ✅          | ✅     |
| Edit Layout/Widgets | ❌         | ✅          | ✅     |
| Change Settings     | ❌         | ✅          | ✅     |
| Delete Dashboard    | ❌         | ❌          | ✅     |
| Access Management   | ❌         | ❌          | ✅     |

### Custom Roles

Custom roles allow Organizations to define more granular access controls beyond the default roles. You can specify exactly which actions are allowed—such as editing widgets but not layout, or enabling refresh without access to sharing options.

{% hint style="warning" %}
Custom roles are available only for **Organizations** and must be created in the **Organization Settings**.
{% endhint %}

Once created, custom roles can be assigned to collaborators from the **Access Management** tab of any dashboard.

{% content-ref url="../../../organizations/custom-roles" %}
[custom-roles](https://docs.qubitro.com/organizations/custom-roles)
{% endcontent-ref %}