English

Deutsch

English

Deutsch

Appearance

User management

In user management you control who has access to your workspace. You invite team members by email and assign roles with clearly delimited permissions. Workspace admins manage billing, users and the audit log; workspace users work with projects and scans. You can remove members from the workspace when access is no longer needed.

Overview and team list

User overview with roles and status

  • Team list - shows everyone with access to the workspace including role and invitation status.
  • Transparency - you see at a glance who is active and who still has a pending invitation.
  • Workspace context - management always applies to the entire workspace, not individual projects in isolation.

Invitations by email

  • Email address - enter the business email of the person who should get access.
  • Process - invited users receive a message with the next steps to accept.
  • Resend - if needed you can renew invitations or send them to a corrected address.

Roles: workspace admin and workspace user

  • Workspace admin - full access to billing, user management and audit log, plus administrative settings of the workspace.
  • Workspace user - access to projects and scans according to the workspace policies, without full administrative rights.
  • Least-privilege principle - assign admin only where people share responsibility for billing and compliance.

Remove members

  • End access - removed users can no longer access the workspace.
  • Data - check internal guidelines about open tasks or handovers before removing.
  • Auditability - removal is a security-relevant action and may appear in the audit log.

Role changes and later adjustments

  • Upgrade - a user can be promoted to admin when more responsibility is assumed.
  • Downgrade - an admin can become a user when administrative tasks are removed.
  • Care - before a downgrade, check whether open billing or audit tasks are tied to this person.

Security and invitation practices

  • Business addresses - prefer company email addresses over private mailboxes.
  • Repeated invitations - if you're unsure about delivery status, trigger the invitation again.
  • Least privilege - start new colleagues as users and extend permissions as needed.

Notes

  • Keep the member list up to date - orphaned invitations and old accounts increase the risk of abuse.
  • Clarify roles in the team so that several people don't unintentionally hold the same admin rights.
  • When organisational changes happen: first appoint new admins, then close old accesses.

Published on qualivise.ai

Copyright (c) 2026 qualivise.ai