# Roles and Permissions Organizations use their own set of roles, separate from team roles. Every person in an organization has exactly one organization role, and that role controls what they can do at the organization level — managing teams, approving join requests, editing domain settings, and viewing cross-team insights. A person's organization role is independent of their role inside any specific team. The same user can be an organization Admin and still be a regular team Member in one of the teams inside that organization. *** ## Understanding the Roles Each organization role is designed for a distinct type of user. The key question is: **how much oversight does this person need across the company?** * **Member** — For colleagues who primarily work inside one or a few teams. Members can see the organization's structure and the list of teams in it, and they can join any auto-join team or request to join teams that require approval. * **Admin** — For champions who help run the company's Duvo footprint. Admins can create new teams inside the organization, manage domain settings, approve organization and team join requests, invite new members to the organization, and view cross-team insights such as the Clarity view. Admins automatically have access to every team in the organization and can open any team without joining it. * **Owner** — For the people ultimately responsible for the organization. Owners have all Admin capabilities plus the ability to manage Admins and update core organization settings. Owners automatically have access to every team in the organization. * **Executive** — The most senior role in an organization, reserved for top-level stakeholders. Executives have full control of the organization, including managing other Owners and Executives. Every organization must have at least one Executive. Executives automatically have access to every team in the organization. *** ## Permissions by Role ### Organization Management | Capability | Executive | Owner | Admin | Member | | ------------------------------------------- | --------- | ----- | ----- | ------ | | Manage Executives | Yes | --- | --- | --- | | Manage Owners | Yes | --- | --- | --- | | Update organization settings and name | Yes | Yes | --- | --- | | Configure discovery mode | Yes | Yes | Yes | --- | | Manage domain whitelist | Yes | Yes | Yes | --- | | Invite new organization members | Yes | Yes | Yes | --- | | Remove organization members | Yes | Yes | Yes | --- | | Update member roles (up to their own level) | Yes | Yes | Yes | --- | | View organization structure and team list | Yes | Yes | Yes | Yes | ### Teams Inside the Organization | Capability | Executive | Owner | Admin | Member | | --------------------------------------------- | --------- | ----- | ----- | ------ | | Create new teams inside the organization | Yes | Yes | Yes | --- | | Set team discovery mode | Yes | Yes | Yes | --- | | Approve or decline team join requests | Yes | Yes | Yes | --- | | Virtual access to every team (no join needed) | Yes | Yes | Yes | --- | | Join auto-join teams | Yes | Yes | Yes | Yes | | Request to join teams that require approval | Yes | Yes | Yes | Yes | ### Cross-Team Insights | Capability | Executive | Owner | Admin | Member | | -------------------------------------------- | --------- | ----- | ----- | ------ | | View the cross-team Clarity view | Yes | Yes | Yes | --- | | View organization-wide activity and insights | Yes | Yes | Yes | --- | *** ## How Organization Roles Interact With Team Roles Organization roles and team roles are applied independently, but they combine in a few important ways: * **Admins, Owners, and Executives have virtual access to every team** in the organization. They do not need an explicit team membership row — they can open any team and act with full team-level privileges there. * **Members interact with teams the same way any individual contributor would.** Their organization role only controls discovery and visibility at the organization level. This separation means a person can be an Executive at the organization level (for strategic oversight) while still choosing to be a regular team Member inside the teams they actively work in — or not join those teams at all. *** ## Choosing the Right Role Pick the role based on what the person needs to do at the organization level: | If this person needs to... | Assign them | | ------------------------------------------------------------------- | ------------- | | See which teams exist and join the ones relevant to them | **Member** | | Manage teams, domains, join requests, and see cross-team insights | **Admin** | | Do all of the above and manage the Admins themselves | **Owner** | | Have full control of the organization, including other senior roles | **Executive** | Every organization must keep at least one Executive at all times. *** ## Related Topics * [Organizations Overview](/organizations/organizations-overview.md) — What organizations are and how they work * [Teams Overview](/teams/teams-overview.md) — How teams work inside (and outside) an organization * [Team Roles and Permissions](/teams/roles-and-permissions.md) — Team-level roles, which apply separately from organization roles --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.duvo.ai/organizations/roles-and-permissions.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.