When to use each role
- Admin: workspace owners and administrators who need full control over settings, members, and integrations.
- Member: engineers and data scientists who create and manage projects, tests, and data.
- Member Restricted: contractors or external collaborators who need creation capabilities without access to sensitive data.
- Viewer: stakeholders, executives, or auditors who need visibility without modification rights.
Permission matrix
FAQ
Are permissions enforced at the project level too?
Are permissions enforced at the project level too?
Yes. Permissions are enforced at both the workspace and project levels.
Access groups can provide additional
project-level control.
Can a project owner bypass their workspace role?
Can a project owner bypass their workspace role?
Yes. Project owners have full permissions for their projects, regardless of
their workspace role.
Can Member Restricted users still access data indirectly?
Can Member Restricted users still access data indirectly?
Yes. Member Restricted users cannot view data directly, but they can still
export data and run inference, which may expose data indirectly. Keep this
in mind when assigning this role.

