Managing roles
A role is one or more permission sets that you can assign to any Talon.One user and determine what this user has access to.
You can create as many roles as needed. For example, you create roles to ensure only certain users can edit campaigns in a specific Application or view loyalty programs.
For example, you can create a role from a template called Customer Support that only gives access to coupons and loyalty points in loyalty programs connected to specific Applications.
- Growth Manager: Manager with full access to all Applications and their settings.
- Campaign Contributor: Contributor who can create campaigns and edit Disabled campaigns.
- UK Marketing Admin: Admin with full access to country-market Applications and the related tools.
- Seasonal Campaign Manager: Manager with full access to campaigns and loyalty programs in one Application.
If you need help configuring the right roles for your business, contact your customer success manager.
Admin role
The admin role is a default role that gives full access to all Applications in your Talon.One account. With this role, you can access all account features, create and manage Applications, invite users, and more.
To manage the list of admin users or assign the admin role to a user:
- In the lower-left corner of the Campaign Manager, click Account.
- Click Organization > Users and Roles.
- In the Roles section, on the Admin role, click > Edit Users.
- In Users, select which users the admin role is assigned to, and save your changes.
You can also assign the admin role to a user when you invite them, and at any point from the Users section.
Creating a role
Admins can create roles and assign them to users at any time, including when inviting new users.
Which roles are right for your organization?
Each role can give access to different areas of the Campaign Manager depending on the creation mode and selections you make.
See the following comparison table of possible access levels for the admin role, custom role, and roles created from a template to find the right roles for your organization.
| Access level | Admin | Application admin | Manager | Contributor | Customer support | Custom role |
|---|---|---|---|---|---|---|
| Account settings (Organization) | Yes | No | No | No | No | No |
| Manage tools | Yes | Yes* | No | No | No | No |
| Edit profile | Yes | Yes | Yes | Yes | No | Yes |
| Applications | Yes | Yes* | Yes** | No | No | Yes** |
| Application settings | Yes | Yes* | Yes** | No | No | Yes** |
| View campaigns | Yes | Yes* | Yes* | Yes** | Yes** | Yes** |
| Create and edit campaigns | Yes | Yes* | Yes** | No | No | Yes** |
| Activate campaigns | Yes | Yes* | Yes** | No | No | Yes** |
| Create campaigns | Yes | Yes* | Yes* | Yes** | No | Yes** |
| Edit inactive campaigns | Yes | Yes* | Yes* | Yes** | No | Yes** |
| Events | Yes | Yes* | Yes** | No | No | Yes** |
| Customers and sessions | Yes | Yes* | Yes** | No | No | Yes** |
| Create and edit coupons | Yes | Yes* | Yes** | No | Yes** | Yes** |
| Create and edit referrals | Yes | Yes* | Yes** | No | Yes** | Yes** |
| Loyalty programs | Yes | No | Yes* | Yes* | Yes* | Yes** |
| Add and deduct loyalty points | Yes | Yes* | Yes* | No | Yes* | Yes** |
*Depends on the Applications selected for the role.
**Depends on the Applications and permissions selected for the role.
Creating a custom role
To create a custom role, set permissions for at least one Application or one loyalty program.
To create a role from scratch:
-
In the lower-left corner of the Campaign Manager, click Account.
-
Click Organization > Users and Roles.
-
On the right side of the Roles section, click Create Role. The custom role is selected by default.
-
In Role name, type a name for the role.
-
In Role description, type a description to help users understand the purpose of the role.
-
In Application permissions, click and select one or more Applications for which you want to set permissions.
-
Select the permission for each Application entity in the list:
- Edit / Create and edit: Can edit the entity and create new entities where possible.
- View: Can only view the entity.
- No access: Cannot access the entity.
note- The selected permissions are also applicable to templates and campaigns from templates.
- Selecting the Create and edit permission for campaigns automatically enables it for campaigns from templates as well.
- To create a different set of permissions for another Application, click Add Permission Set.
- You cannot create two roles with the same combination of permissions and Applications.
-
In Loyalty program permissions, select one or more loyalty programs and set the permission for each program:
- Manage: Can fully manage the loyalty program.
- Support: Can add and deduct loyalty points.
- View: Can only view the loyalty program.
-
(Optional) In the Users section, select one or more users you want to assign this role to.
tipYou can assign a role to users when you edit the role, when you invite new users, or at any point directly from the Users section.
-
Click Create Role.
Creating a role from a template
To create a role from a template:
-
In the lower-left corner of the Campaign Manager, click Account.
-
Click Organization > Users and Roles.
-
On the right side of the Roles section, click Create Role and select one of the available templates:
- Application Admin: Has full Application access.
- Manager: Has full access to campaigns, campaign templates, and loyalty programs.
- Contributor: Has limited access to campaigns, campaign templates, and loyalty programs.
- Customer Support: Has access to coupons and loyalty points.
tipWe recommend assigning permissions in the following ways for effective access control over your campaigns:
- Create and edit all campaign templates: Assign to users with higher permission levels, for example, Growth Managers.
- Create and edit only campaigns from templates: Assign to Contributor roles to limit access.
-
Modify the name and description of the role as needed.
-
In Application permissions, click and select one or more Applications for which you want to set permissions.
-
(Optional) Deselect permissions from the list to further customize the permission set.
note- To add a different set of permissions for another Application, click Add Permission Set.
- You cannot deselect permissions in the Application Admin template.
- When you deselect a permission in the Manager template, it becomes a view-only permission. Some Manager permissions are connected and cannot be deselected separately.
- If you switch to another template after customizing the permissions, the list of preselected permissions is reset.
- You cannot create two roles with the same combination of permissions and Applications.
- The role gives permissions by default to all loyalty programs connected to the Applications selected in the previous step. If you select one or more loyalty programs while editing the role, the role gives access only to those programs.
-
(Optional) In the Users section, select one or more users you want to assign this role to.
tipYou can assign a role to users when you edit the role, when you invite new users, or at any point directly from the Users section.
-
Click Create Role.
Conflicting permissions
When a user has multiple roles with different permissions for the same Application, the final permissions are a combination of the permissions with the highest access level.
For example, let's take a user who is assigned the following roles:
- Role 1: Campaign Contributor for the My E-shop Application.
- Role 2: Coupon Manager for the My E-shop Application.
Here is a breakdown of the permissions for the My E-shop Application for each role, and what the user's final permissions for this Application are:
| Entity | Role 1 permissions | Role 2 permissions | Final permissions |
|---|---|---|---|
| Campaigns | View | View | View |
| Rule Builder | View | View | View |
| Coupons | View | Create and edit | Create and edit |
| Referrals | View | View | View |
| Insights | View | View | View |
| Campaign settings | View | View | View |
| Campaigns | Create and edit | View | Create and edit |
| Campaign Evaluation | View | View | View |
| Customers and Sessions | View | Edit | Edit |
| Events | View | View | View |
| Settings | No access | View | View |
Displaying roles
In Account > Organization > Users and Roles, the Roles section displays the roles in your account.
Each role card displays the following information:
- Role name
- Role description
- Number of users the role is assigned to
- Number of Applications connected to the role
Assigning a role
You can assign a role to one or more users at any time. You can do this when creating or editing a role, when inviting a new user, or directly from the Users section.
To assign a role from the Users section:
-
In the lower-left corner of the Campaign Manager, click Account.
-
Click Organization > Users and Roles.
-
In Users, to the right of the user you want to assign the role to, click > Assign Role.
-
In the menu that appears, select the role you want to assign. You can select more than one role.
importantAdmins have full account access and cannot have other roles. Assigning another role to an admin user revokes their admin permissions.
Editing a role
You can update a role's name and description, add or remove Applications, update its permissions, and change the list of users the role is assigned to at any time. The effect is immediate.
To edit a role:
- In the lower-left corner of the Campaign Manager, click Account.
- Click Organization > Users and Roles.
- In the Roles section, on the role you want to edit, click > Edit Role.
- After you are done editing the role, click Save.
Deleting a role
You can delete a role at any time. This action cannot be undone. When a user is assigned only one role, and you delete that role, the user loses access to all Applications.
To delete a role:
- In the lower-left corner of the Campaign Manager, click Account.
- Click Organization > Users and Roles.
- In the Roles section, on the role you want to delete, click > Delete Role.
- In the pop-up that appears, click Delete Role.