Users, Roles & Permissions Overview

The NoFrixion platform uses a flexible roles and permissions system to control what each user can see and do. Understanding how this works is key to managing access across your organisation securely and effectively.


This system follows a model known as Role-Based Access Control - a way to manage permissions by assigning users to roles instead of managing access user-by-user.


For a full list of permissions, see the permissions guide for the business portal.

What are roles and permissions?

Every user on the platform is granted access through roles. A role is simply a named collection of permissions; each permission gives access to a specific capability, like viewing transactions, creating payouts, or managing users.


For example, a role called “Viewer” might include permissions to:

  • View transactions
  • View payment requests
  • View payouts


Whereas a role called “Payments Manager” might include additional permissions, like:

  • Create, edit, delete and authorise payouts
  • Create, edit and delete payment requests etc.

Roles are designed to be flexible - users can have more than one role, where the permissions from all their roles are combined.


This means access is additive: if two roles grant different permissions, the user gets both. There are no “negative” permissions and no built-in hierarchy between roles; a role is only as powerful as the permissions it contains.

Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.

Related Articles