Skip to content
  • There are no suggestions because the search field is empty.

How to manage user access in your workspace

Decide exactly who in your workspace can do what. Each permission can be set independently, so you can tailor access to fit your team's structure

How to configure Workspace user permissions in Model Match

The Security page lets you decide exactly who in your workspace can do what — from inviting members to purchasing credits. Each permission can be set independently, so you can tailor access to fit your team's structure.

This guide walks through every permission available on the Security page, grouped by section.

Where to find user permissions

Workspace user permissions live on the Security page under Workspace Management. From here, you'll see three groups of controls:

  • Organization & Teams

  • Access & Security

  • Billing & Credits.

Each permission has a dropdown next to it where you can assign the role that's allowed to perform that action.

Organization & Teams

These permissions control who can view and manage the structure of your organization - including team creation, organization settings, and member visibility.

View members

Controls who can view all organization members.

View teams

Controls who can view all organization teams.

Update organization

Controls who can update organization settings.

Delete organization

Controls who can permanently delete the organization. This is a high-impact action — keep it restricted.

Create teams

Controls who can create new teams within the workspace.

Update teams

Controls who can update team settings.

Delete teams

Controls who can delete teams.

Access & Security

These permissions govern invitations, role management, integrations, and data exports.

Invite members

Controls who can invite new members to the workspace.

Cancel invitations

Controls who can cancel pending invitations before they're accepted.

Update permissions

Controls who can modify role permissions. Anyone with this permission can change the rules on this page, so assign it carefully.

Create OAuth clients

Controls who can create OAuth client apps for connecting outside tools to your workspace.

Export data

Controls who can export organization data.

Billing & Credits

These permissions cover financial and credit-related actions.

View billing

Controls who can view billing information, including invoices and payment history.

Manage billing

Controls who can manage subscription and payment details, such as updating cards or changing plans.

View credits

Controls who can view credit balance and usage.

Purchase credits

Controls who can buy credits for the workspace.

How to change a permission

To update any of the permissions above, open the dropdown next to the permission and choose the role you want to grant access to. Changes save automatically and apply immediately to everyone in that role.

Best practices

A few guidelines to keep your workspace secure without slowing down your team:

  • Keep destructive permissions (Delete organization, Delete teams, Update permissions) restricted to Owners.
  • Give day-to-day permissions (View members, View teams, Invite members) to a wider group so work doesn't stall.
  • Review permissions whenever someone changes roles or leaves the organization.

👋 Need help? If you're unsure how to structure permissions for your team, reach out to your support team.