[Intum Help](https://intum.com/help.md) / [Organization](https://intum.com/help/organization.md)

# [User roles and permissions - how to manage access in the system](https://intum.com/help/organization/user-roles-and-permissions-how-to-manage-access-in-the-system.md)

Managing permissions is a key element of organizing teamwork. With the **Roles** feature, you can precisely define which modules and data individual employees have access to.

### Where to find Role settings?
Access to role management is quick and intuitive:
1. Click the **menu icon (4 dots)** in the upper right corner of the screen.
2. Go to the **Account** section.
3. Select the **Roles** tab.
From this list, you can manage existing roles (edit, copy, or delete them) and add new ones by clicking the **+ Add role** button.

### How to create a new role? (Step by step)
After clicking the add new role button, you'll see a form that allows full permission customization:
1. **Name:** Enter a role name (e.g. "Sales Rep", "Project Manager", "Intern").
2. **Based on:** You can choose "none (custom permissions)" or select an existing role as a template.
3. **Permission selection:** Below you'll find a checklist divided into sections (e.g. *Account Administration*, *Tasks and Projects Module*, *CRM*).

![](bd3d6c4bdcee-Screenshot - 2026-05-26T143813.067.png)

### Example permission sections
- **Account Administration:** Managing users, editing profiles, inviting new people, viewing activity logs.
- **Tasks and Projects Module:** Creating tasks, recurring tasks, work time, editing others' comments, managing time off.
- **CRM:** (In development) Managing access to the client database and contact history.

### Why use Roles?
- **Data security:** Employees see only the information they need.
- **Clean interface:** Users aren't overwhelmed by features they don't use.
- **Easy onboarding:** Assign a ready-made role instead of setting permissions individually.

### Assigning a role to a user
After creating roles, assign them to users in the user management section.

![](d4b2ce59e7d0-Screenshot - 2026-05-26T143357.116.png)

*Remember: If a user should have access to everything, grant them Administrator status. Roles are for users with limited or specialized responsibilities.*