Getting Started
Accounting Data
Using the Portfolio
Company Dashboards
Reporting
Sharing
Manage Organization
Billing and Plans
User Settings
Notifications
Advanced
Roles and Permissions
Complete reference of organization roles and what each role can do across the Levelup platform.
Every member of a Levelup organization is assigned one of three roles: Owner, Admin, or Member. This page explains what each role can do and how permissions work across the platform.
Organization Roles
| Role | Description |
|---|---|
| Owner | The person who created the organization. Has full control over all settings, billing, and data. |
| Admin | Has the same access as the Owner for day-to-day operations, including managing companies, integrations, sharing, and team members. |
| Member | Read-only access to assigned companies. Cannot modify data, manage integrations, or change organization settings. |
Permission Matrix
The table below shows what each role can do across the major areas of the platform.
Companies
| Action | Owner | Admin | Member |
|---|---|---|---|
| View company list | Yes | Yes | Assigned only |
| View company details and financials | Yes | Yes | Assigned only |
| Create a new company | Yes | Yes | No |
| Edit company details | Yes | Yes | No |
| Delete a company | Yes | Yes | No |
| View financial statements | Yes | Yes | Assigned only |
| View KPIs and charts | Yes | Yes | Assigned only |
Member Company Access
Members do not automatically see all companies in the organization. An Owner or Admin must explicitly assign companies to a Member. Once assigned, the Member has read-only access to those companies.
| Action | Owner | Admin | Member |
|---|---|---|---|
| Assign companies to members | Yes | Yes | No |
| Remove company assignments | Yes | Yes | No |
| View member access summaries | Yes | Yes | No |
Integrations
| Action | Owner | Admin | Member |
|---|---|---|---|
| Connect QuickBooks Online or Xero | Yes | Yes | No |
| Disconnect an integration | Yes | Yes | No |
| Trigger a manual sync | Yes | Yes | No |
| View integration logs | Yes | Yes | No |
| Import companies from an integration | Yes | Yes | No |
Sharing and Collaboration
| Action | Owner | Admin | Member |
|---|---|---|---|
| Share a company with another organization | Yes | Yes | No |
| Share a company via email invitation | Yes | Yes | No |
| Revoke a share | Yes | Yes | No |
| Update share access level | Yes | Yes | No |
| Accept an incoming share | Yes | Yes | Yes (recipient only) |
| Decline an incoming share | Yes | Yes | Yes (recipient only) |
| View shared companies list | Yes | Yes | Assigned only |
Chart of Accounts
| Action | Owner | Admin | Member |
|---|---|---|---|
| View chart of accounts | Yes | Yes | Assigned only |
| Override account normalization (per company) | Yes | Yes | No |
| View organization-level COA mapping | Yes | Yes | No |
| Update organization-level COA mapping | Yes | Yes | No |
Consolidations
| Action | Owner | Admin | Member |
|---|---|---|---|
| View consolidation groups | Yes | Yes | No (web app) |
| Create a consolidation group | Yes | Yes | No |
| Edit a consolidation group | Yes | Yes | No |
| Delete a consolidation group | Yes | Yes | No |
| View consolidated statements | Yes | Yes | No (web app) |
Elimination values appear as a read-only column in consolidated statements. There is currently no UI for managing individual elimination rules.
Labels and Metadata
| Action | Owner | Admin | Member |
|---|---|---|---|
| View labels | Yes | Yes | Yes |
| Create, edit, or delete labels | Yes | Yes | No |
| Archive or restore labels | Yes | Yes | No |
| Assign or remove labels from companies | Yes | Yes | No |
| View company metadata | Yes | Yes | Assigned only |
| Edit company metadata | Yes | Yes | No |
Reports
| Action | Owner | Admin | Member |
|---|---|---|---|
| View reports | Yes | Yes | No (web app) |
| Generate or download reports | Yes | Yes | No |
Organization Management
| Action | Owner | Admin | Member |
|---|---|---|---|
| View organization details | Yes | Yes | No (web app) |
| Update organization name, logo, or settings | Yes | Yes | No |
| Delete the organization | Yes | Yes (API only) | No |
| View member list | Yes | Yes | No (web app) |
| Invite new members | Yes | Yes | No |
| Remove members | Yes | Yes | No |
| View pending invitations | Yes | Yes | No |
Billing
| Action | Owner | Admin | Member |
|---|---|---|---|
| View current subscription and pricing | Yes | Yes | No |
| View billing history | Yes | Yes | No |
| Manage subscription (upgrade, downgrade, cancel) | Yes | Yes | No |
| Access the billing portal | Yes | Yes | No |
How Access Levels Work for Shared Companies
When a company is shared with your organization, the share has its own access level -- either Read or Write:
- Read: Your organization can view the company's financial data but cannot modify it.
- Write: Your organization can view and modify the company's financial data.
Within your organization, your role determines what you can actually do with that shared company:
- Owner/Admin: You see all shared companies and can act within the share's access level.
- Member: You only see shared companies that have been explicitly assigned to you, and your access is always read-only regardless of the share's access level.
Understanding Access Level Hierarchy
Access levels stack as follows:
- Organization role -- Determines your base capabilities (Owner/Admin have full access; Member has read-only).
- Company ownership -- If your organization owns the company, Owner/Admin roles grant full control.
- Share access level -- For shared companies, the share's read/write setting limits what Owner/Admin roles can do.
- Member assignment -- Members must be explicitly assigned to a company to see it at all.
For more on sharing, see Sharing Companies. For managing team members, see Inviting Team Members.
Command Palette
Search for a command to run...