Managing roles
A role is a set of permissions that you can assign to any user profile and that determines what this user has access to.
Typically, you create as many roles as needed to ensure only the users of your choice can modify certain campaigns, create coupons, etc.
For example, you can create a role called Customer Support that grants permission to only view campaigns in a single Application.
When you invite a new user, the default
role is no access, which means this user has no permissions or access
to any Application. As a result, when you get started with Talon.One, we recommend that you
create as many roles as you need in your workflow as a security precaution.
- Customer Support: Agent who can create and edit coupons in a single Application.
- Growth Team Lead: Team lead with full access to Applications and their developer settings.
- Campaign Manager: Junior who can create campaigns but not activate/launch them.
- UK Marketing Admin: Admin with full access to country-market Applications and the related tools.
- Retail Campaign Manager: Manager who can view or fully access campaigns per business channel.
You can add new roles and assign roles to users at any time. If you need help configuring the right roles for your business, contact your customer success manager.
Access levels
Application permissions
When creating a role, you can define the following access levels for each Application:
Standard access levels:
- No Access: Cannot access the Application at all.
- View: Can view all campaigns in the Application but cannot create campaigns or make changes to existing ones.
- Create and Edit: Can create and edit campaigns in the Application, as well as perform campaign-level actions like managing campaign schedules and setting campaign budgets.
- Full Access: Can access and edit any area of the Application, including Application-level settings like managing campaign evaluation and notifications.
- Application Admin: Can access and edit any area of the Application and the related tools (in the Campaign Manager, Settings > Tools). Unlike users with full access, Application admins can create and edit entities such as attributes and custom effects when connected to the Application they are an admin of.
Special access levels:
- Create and Edit Coupons: Can only create and edit coupons in any campaign in the Application.
- Draft Campaigns: Can only create and edit inactive campaigns. To activate campaigns, users with this access level should request campaign activation from an admin.
- Custom Access: Has custom access levels for the Application that you can set yourself.
Loyalty program permissions
You can define user access to each loyalty program in your account. You can restrict users and roles to:
- No Access - Cannot access or view the loyalty program.
- View - Can only view the loyalty program and its balance.
- Support - Can add and deduct points for a user.
- Manager - Can edit the loyalty program and manage loyalty data, such as import points and export the loyalty balance.
Admins have access to all loyalty programs by default.
When you grant support access to a user, ensure you also give them access to the Application that uses your loyalty program campaign. Otherwise, the user cannot add or deduct loyalty points for a customer.
Conflicting access levels
When a user has two roles with different permissions for the same Application, the role that grants more access overrules the limited role.
Consider the following example about a user with the following roles:
- Role #1: Create and Edit Coupons for the
My E-shopApplication. - Role #2: Draft Campaigns set for the
My E-shopApplication.
| Role #1 permissions | Role #2 permissions | Final permissions |
|---|---|---|
| Can view coupons | Can view coupons | Can view coupons |
| Can edit coupons | Can edit coupons | Can edit coupons |
| Can create coupons | Can create coupons | Can create coupons |
| Can create campaigns | Can create campaigns | |
| Can edit rules | Can edit rules | |
| Can edit campaigns | Can edit campaigns |
The permission system accumulates the granted permissions from all roles so the final permission set includes the widest set.
Creating a role
To create a role in your Talon.One account you need administrator access. You can create new roles and assign roles to users at any point.
To create a role:
In the lower-left corner of the Campaign Manager, click Account.
noteOnly admin users can see this section.
Click Organization > Roles.
Click Create Role in the top-right corner.
Type a name and description for your new role.
Select the access level you want to grant for each Application and loyalty programs.
(Optional) To assign users to a role, click Assign Users. You can do this at any time by updating the role, or when you invite new users.
tipThe list of Applications may be long. Scroll further down the page for the Assign users to your role section.
Updating permissions and roles
You can update a role's permissions or change a user's role at any time. The effect is immediate.
Deleting a role
This action cannot be undone. When a user has only one role, and this role is deleted, the user loses access to all Application. Ensure to give this user a new role.
To delete a role:
Click Account in the lower-left corner of the Campaign Manager.
noteOnly admin users can see this section.
Click Organization > Roles.
Click the role you want to delete.
Click Delete in the top-right corner and confirm.