Table of Contents

Security setup in BusinessMate

Security is based on roles and permissions.

All users are members of a group, and the group has a given role with given permissions. Only the tenant admin can control the groups, roles and permissions. A tenant admin can import, create and maintain users and groups. 


When creating a list you become the list admin of that list, via a list admin group. If more users are added to that group they gain the same admin persmissions. Only list admins can control list.

Lists owners can configure a list, the related forms, workflows, roles and permissions, and setting. The list owner can assign the created roles to groups addressing relevant users.

Roles can hold the following permissions;

“Can create”. 

Having the permissions allows the users in the group to create a record on the related list. If the users also needs to see the created record, they need to have that permission aswell.

“Can read”

This permissions allows you to read all the records in a list, the permissions can be given with a filter to reduce the amount of records showing in the list, for a better readability. 

“Can update”

Having this permission allows you to update records in a list. This permissions can also be given with a filter to reduce the amount of records showing in the list, for a better readability. 

For this to work properly you need to have the read permission aswell.

“Can delete”

Having this permissions allows you to archive records in a list. Normally this permissions is given to a superuser or a supervisor. 

This permissions is also allowing you to “unarchive” a record.

“Can force delete”

Having this permission allows you to delete a record. A force deleted record can’t be restored.

“See KPI” 

This permissions allows you tose and use KPI’s related to the list. Having this permissions gives you the option to have the KPI on your homescreen. 


The owner has full control over the list.

Security example

Roles and permissions

In this examples there is 3 groups in the list

1. User/requester/customer

2. Fulfiller

3. Manager

The user group contains customers who’s comming with a task/request. They need the permissions to “create”, “read” and “update” their own records in the primary list, and read records in the support list. When you only want to give the customer permissions to “create” and “update” their own records, you need to create two groups (see picture above), the group with permission to “create” and “update” set a filter.



The fulfillers are the ones to complete the given task and therefore the need the permissions to “create”, “read” and “update” all records in the list related to the process. 

Managers are responsible for maintaining the list, archiving old cases, and to make sure everything is working properly. In this case the managers permissions is “Create”, “read”, “update” and “delete”.