New article
Recently updated
Understanding SafetyStratus Permits module permissions
Who is this article for?Administrators responsible for managing permits.
Administrator role and Permits module access are required.
The SafetyStratus Permits module uses a role-based permissions system that controls what users can view, create, edit, and approve across different permit types and workflows.
1. Understanding the permissions matrix
The permissions matrix defines six distinct user roles, each with specific capabilities within the Permits module. These roles determine what actions users can perform on permits throughout their lifecycle.
Action / Capability | General User | Inspector / Area Manager | Reviewer | Approver | Administrator | Tagged User (via User Tag only) |
View permit types list | ✅ Active types only | ✅ Active types only | ✅ For assigned permits | ✅ For assigned permits | ✅ All types | ✅ Active types linked to tagged user |
Create new permit request | ✅ Any active type | ✅ Any active type | ❌ | ❌ | ✅ Any type | ✅ If tagged to PI / linked user |
Edit own draft or in-review permit | ✅ | ✅ | ❌ | ❌ | ✅ All permits | ✅ If acting for tagged PI / linked user |
View own submitted permits | ✅ | ✅ | ❌ (unless also applicant) | ❌ (unless also applicant) | ✅ All | ✅ Tagged PI's permits |
View others' permits | ❌ | ❌ | ✅ If assigned as reviewer | ✅ If assigned as approver | ✅ All | ✅ If linked via tag and form scope |
Comment on permits | ✅ Own permits only | ✅ Own permits only | ✅ Assigned permits | ✅ Assigned permits | ✅ All | ✅ Tagged PI's permits |
Approve / reject permits | ❌ | ❌ | ❌ | ✅ Assigned permits | ✅ All | ❌ |
Request changes | ❌ | ❌ | ✅ Comments only | ✅ Assigned permits | ✅ All | ❌ |
Amend existing permits | ✅ Own permits (if amendable) | ✅ Own permits (if amendable) | ❌ | ❌ | ✅ All | ✅ Tagged PI's permits |
Renew existing permits | ✅ Own permits | ✅ Own permits | ❌ | ❌ | ✅ All | ✅ Tagged PI's permits |
Access committee assignments | ❌ | ❌ | ✅ If part of committee | ✅ If part of committee | ✅ Manage all committees | ❌ |
Assign reviewers / approvers | ❌ | ❌ | ❌ | ❌ | ✅ All | ❌ |
Configure permit types and workflows | ❌ | ❌ | ❌ | ❌ | ✅ All | ❌ |
Export permit data / reports | ❌ | ❌ | ❌ | ❌ | ✅ All | ❌ |
Access dashboards and analytics | ❌ | ❌ | ❌ | ❌ | ✅ All | ❌ |
2. Interpreting role permissions
Each role has distinct characteristics that determine how users interact with permits:
- General Users and Inspectors / Area Managers share similar baseline permissions, but the latter may also be assigned as reviewers or approvers if needed
- Reviewers and Approvers gain access only to assigned permits and only for the duration of the workflow stage
- Tagged Users act as a proxy for a linked PI (Principal Investigator) or permit owner—permissions are scoped to that relationship
- Administrators have unrestricted access across all permits, settings, workflows, and reports
3. Applying permissions in different industries
The permissions matrix supports various industry-specific workflows:
- Academia: A Biosafety Permit Coordinator (Tagged User) can submit and amend permits for a PI but cannot approve
- Manufacturing: A Hot Work Approver role allows a safety engineer to approve permits but not alter workflows
- Construction: Confined space entry permits route only to the site's entry supervisor and EHS lead as approvers
- Industry: A chemical storage permit can have a reviewer from Compliance and a separate approver from Operations