Roles

Roles and permissions in Adminflow Byrå – what can you do?

What are roles and permissions?

Roles and permissions determine what you can see and do in Adminflow Byrå. You can have one or more roles at the same time, and permissions are always added together – you get the sum of everything you're assigned.

Important to know: | - The system never reduces your permissions by adding a role | - If you have access through one role, you keep it even when you're given a new role | - To remove access, the role that grants it must be removed


Roles you can have

Team roles – granted via team membership

When you're part of a team, location, business unit, or department, you automatically receive one of these roles:

Team leader

You are set up as a leader in your team. With this role, you can:

Regarding clients:

  • See and work with clients connected to your team
  • Create new projects for clients
  • Archive clients
  • Remove clients from the list
  • Configure the client portal (modules, URL, visibility)
  • See accounting information and Maestro access for the client

Regarding projects:

  • Manage who has access to projects (add/remove team members)
  • Change who is the Engagement Manager and Project Manager
  • Change which business unit a project belongs to
  • Archive projects
  • Edit planning categories
  • Create and delete folders in the document structure
  • Write control notes on tasks
  • Edit permissions on subfolders (independently of the parent folder's settings)

Regarding tasks and teams:

  • Send reminders about overdue tasks
  • See and work with all projects connected to the team
  • Manage task templates (via settings)

Team member

You are a regular member of the team. With this role, you can:

Regarding clients and projects:

  • See and work with clients and projects connected to your team
  • Edit client data
  • See accounting information for clients

Regarding folders and files:

  • Create folders in the document structure
  • Work with files on the project

Regarding tags:

  • Manage tags (create, edit, delete tags in settings)

Location manager

You are the manager of a location. You have everything a Team leader has, plus:

  • Delete client portals
  • Delete files in the document structure
  • Manage tags

Business unit manager

You are the manager of a business unit. Permissions correspond to those of a Location manager.


Project roles – assigned directly on the project card

Project roles indicate who has which responsibility on a project. The actual permissions (what you can do) come from your team role or global roles – the project role is primarily an identity and responsibility marker.

Accountant

  • You are the designated accountant for the project
  • Mandatory role – every project must have one
  • Can be displayed in the client portal (configured per project)
  • Your permissions on the project are determined by your team role, not this role alone

Project manager

  • You are the project's designated manager
  • Always visible in the client portal
  • Your team membership determines which projects count as "in your team"
  • Your permissions are determined by your team role

Engagement Manager

  • You are responsible for the contract on the project
  • Always visible in the client portal
  • You receive notifications when AML risk assessments are due for this project
  • Changing who is the Engagement Manager requires the permission Change managers
  • Your permissions are determined by your team role

Additional accountant

  • An optional project role – multiple people can have it
  • Can be displayed in the client portal (configured per project)
  • Your permissions are determined by your team role

Payroll consultant

  • You are responsible for payroll on the project
  • Always visible in the client portal
  • Your permissions are determined by your team role


Global roles – assigned directly on the employee card

Global roles apply across all clients and projects, regardless of team affiliation.

Managing director

  • Applies to the entire system
  • Intended for the agency's top executive
  • Broad permissions across all clients and projects

Default permissions

  • A minimum set that all employees always have
  • Assigned automatically – does not need to be set manually
  • Provides basic access for working in the system
  • Cannot be removed from individuals

Project author

  • Assigned to you automatically when you create a project
  • Gives you access to the specific project you created
  • Can be removed automatically after a period configured by the agency

Quality control manager

  • For those responsible for quality control in the agency
  • Grants access to create and edit templates for quality control


Administrator – overrides all roles

Some employees have a separate administrator flag on their employee card. This is not a role, but provides:

  • All permissions throughout the entire system
  • Access to all clients, projects, tasks, and employees
Use this flag very sparingly – it should only be granted to the very few.


Control permissions

In addition to roles, some employees have access to perform control actions. This is set on the employee card:

What you can control

Requirement

Accounting

The flag Controller of accounting is enabled

Tax return and annual accounts

The flag Controller of tax return and annual accounts is enabled

AML

The flag Controller of AML is enabled

Quality control spot checks

The flag Controller of quality control is enabled


Access to folders and files

Folders have their own permission rules:

  • Create folders – requires the permission Folder – create
  • Delete folders – requires the permission Folder – delete
  • Delete files – requires the permission File – delete
  • Subfolders – some folders require explicit permission to create or delete content. If you have Folder – bypass subfolder restrictions, you can edit permissions on subfolders independently of the parent folder's settings


The client portal – what do clients see?

The client portal has its own access system for clients (contact persons), separate from the agency's roles. The only overlap is:

  • Visibility in the client portal – some project roles (Project manager, Engagement Manager, Payroll consultant) are always shown in the portal. Accountant and Additional accountant can be configured per project
  • Documents – folders can be given client access, which controls what the client's contact persons see


Frequently asked questions

Can I have multiple roles?

Yes. All the roles you're assigned are added together, and you get the sum of all permissions.

I have too much access – what do I do?

Contact the person who manages roles in your agency. They can remove the role that grants the access.

What's the difference between being a Team leader and an Engagement Manager?

Team leader gives you actual permissions (what you can do). Engagement Manager is an identity role that indicates who is responsible for the contract on the project – your actual permissions still come from your team role.

I created a project, but I can no longer see it?

The agency can configure that your Project author access is automatically removed after a certain period. Contact an administrator.

I can't change who is the Engagement Manager.

You need the permission Change managers to do this. Contact an administrator.

Can I see who has access to a client or project?

Yes – on the client and project card, under the team overview, you can see who has been added and which role they have.


A couple of translation notes to flag:

  • I translated Oppdragsansvarlig as Engagement Manager (the standard term in English-language accounting/agency contexts). If you prefer something else (e.g. Engagement Partner, Contract Manager), let me know and I'll swap it throughout.
  • Byrå is rendered as agency – common in this context, but if your English-speaking users are more familiar with firm (as in "accounting firm"), that may be a better fit.

Oppdatert: 15/05/2026

Var denne artikkelen til hjelp?

Del tilbakemeldingen din

Avbryt

Takk skal du ha!