Skip to main content
A role in Beebole is a named set of permissions that controls what its holders can see and do. Every person has exactly one role, and each permission in a role sets two levels — View and Edit — scoped to targets such as Me, My team, or My projects. This page explains how roles work and what every permission controls.
Roles control what a person’s role lets them do — view or edit data. Which projects, time off types, and expense types are available to each person is a separate system, covered in Assignments.

How roles work

Roles live in Settings > Person Roles — click the button with your initials at the bottom of the sidebar to open Settings. Each role is a grid of permissions with three pieces:
  • Permission — the area of Beebole it controls, such as Timesheet entries or Billing rates.
  • Edit — the targets whose data the role can create, change, or delete.
  • View — the targets whose data the role can see.
A permission with nothing selected shows Not allowed: people with that role don’t see that area at all. Some permissions — mostly account-wide definitions like Define time off or Tags — are simple on/off checkboxes instead of target selectors. Edit access always includes view access. When you add a target under Edit, Beebole adds it to View automatically; when you remove a target from View, it is removed from Edit too. At the top of the grid, the Admin role (full access) checkbox grants everything at once. Checking it replaces all individual permissions with full access; unchecking it clears the role so you can build it permission by permission.
A few permissions — such as Billing rates, Costs, Project budgets, and Time off balance — correspond to features included in higher-tier plans. If your subscription doesn’t include the feature, the permission has no effect, even for admins.

Creating and managing roles

1

Open the roles page

Click the button with your initials at the bottom of the sidebar to open Settings, then click Person Roles.
2

Add a role

Click Add a role and type a name — for example Editor, Staff, or Project Lead.
3

Set the permissions

For each permission, pick targets under Edit and View, or check the Admin role (full access) box for full access. Use the Search… field to find a permission by name.
There is no Save button — every change to a role is saved automatically and applies to everyone holding that role. To manage an existing role, open its action menu in the roles list: Duplicate copies the role with all its permissions, Archive hides it, and Delete removes it.
Start from a role that is close to what you need and use Duplicate, then adjust the copy. It is faster than building a role from scratch and you are less likely to miss a permission.
Every new Beebole account starts with three roles: Admin (full access), Manager, and Employee. You can edit them, duplicate them, or add your own.

Permission scopes

For permissions with target selectors, the targets you pick under Edit and View define whose data the permission covers. Each permission only offers the targets that make sense for it.
TargetWho or what it covers
AllNo restriction — every target at once
MeThe person’s own data
My teamPeople they manage, directly or through tags they manage
Team colleaguesPeople who share the same managers
Project colleaguesPeople assigned to the same projects
Task colleaguesPeople assigned to the same tasks
People working on my projectsPeople assigned to the projects they manage
My projectsProjects they manage, directly or through tags they manage
Project assignedProjects assigned to them
My tasksTasks they own
Task assignedTasks assigned to them
My tagsTags they manage, including descendant tags
Global settingsThe organization-wide value of the setting
For example, a team leader role could have Timesheet entries set to Edit: My team and View: My team, Project colleagues — they can correct their own team’s timesheets and see, but not change, entries from project colleagues.

Timesheet, time off, and schedule permissions

These permissions control day-to-day time tracking data.
PermissionWhat it controls
Timesheet entriesTime entries on timesheets — scoped by people, projects, and tasks
Time settingsThe timesheet configuration panel on people and on the account
Valid period for time entryThe setting that limits how far back or forward time can be entered
Define time offCreating and configuring time off types (on/off)
Time off balancePeople’s time off allowances and balances
HolidaysPublic holiday calendars assigned to people
Schedule assignmentWhich work schedule is assigned to a person, tag, or the account
Define schedulesCreating and editing work schedules (on/off)

Approval permissions

PermissionWhat it controls
Approval workflowThe approval stages configured on the account and on people
Approval eventsApproval activity — submissions, approvals, and rejections — scoped by people and projects
A manager who approves timesheets needs Approval events edit access for their team; only admins who design the flow need Approval workflow.

Billing, cost, and budget permissions

PermissionWhat it controls
Billing ratesBilling rates on people and projects
CostsCost rates on people and projects
Project budgetsBudgets defined on projects
Financial data is hidden from anyone whose role has these set to Not allowed — they don’t see billing or cost amounts anywhere in Beebole, including reports.

Expense permissions

PermissionWhat it controls
Define ExpensesCreating and configuring expense types (on/off)
Expense recordsExpense entries, scoped by people and projects

People permissions

PermissionWhat it controls
People detailsPeople’s profiles — names, pictures, and profile data
User accountThe Email & role panel — a person’s email, invitation, and role
ManagerSeeing and changing who a person manages
Managed peopleSeeing and changing who manages a person
Be deliberate with User account edit access: whoever holds it can change other people’s roles.

Project, task, and tag permissions

PermissionWhat it controls
Project detailsProjects — creating, editing, and archiving them
Secondary projectsThe secondary projects allowed on a project
TasksTasks in Planning — scoped to My tasks and Task assigned
TagsCreating and managing tags (on/off)

Custom field permissions

PermissionWhat it controls
Define Custom FieldsCreating and configuring custom fields (on/off)
Custom fields valuesThe values filled in on people and projects

Journal and report permissions

PermissionWhat it controls
JournalJournal messages on people, projects, and tasks
Journal feedThe Journal page in the sidebar
ReportsThe Reports page, scoped by people and projects

Account and visibility permissions

These permissions cover account configuration and the access-control settings themselves.
PermissionWhat it controls
Global settingsThe organization’s account settings (on/off)
LocalizationLanguage, time zone, and format settings on people and the account
Single sign-on (SSO)The SSO configuration on the account
Templates for emailsThe email templates Beebole sends
Notification settingsNotification preferences on people and the account
Notification historyThe list of notifications already sent (on/off)
Push notificationsBrowser push notification subscriptions (on/off)
Show or hideThe Show or Hide panels on people, tags, and projects
Show or hide by defaultThe account-wide Show or hide by default settings
Related itemsThe Who has access? panels on projects, time off types, expense types, and other items
DescriptionThe description panel on people, projects, tasks, and the account
The last four are the controls described in Assignments — a role needs them to manage who has access to what.

Assigning a role to a person

1

Open the person

Click People in the sidebar and click the person’s name.
2

Open the Email & role panel

In the person’s details, open the Email & role panel.
3

Pick the role

Next to Role, click the current role and choose another one from the Choose a role selector. The change is saved automatically.

Best practices

  • Grant the least access that works. Start from Not allowed and add View before Edit, only for the targets each role really needs.
  • Name roles after responsibilities. Names like Project Lead or Finance make it obvious who should hold them.
  • Prefer few roles over many. Targets like My team and My projects adapt to each holder, so one Manager role can serve every manager.
  • Review roles when your structure changes. Targets follow manager and tag relationships — check that permissions still reach the right people after a reorganization.

Related content

Assignments

Control which projects, time off types, and expense types are available to each person.

People

Add and invite team members, and manage their profiles and roles.

Tags

Group people and projects with tags — several permission targets follow tag managers.

Account Settings

Configure the organization-wide settings that several permissions gate.

Frequently asked questions

Roles control what a person can do: view or edit timesheets, billing rates, reports, and so on. Assignments control which items are available to them: which projects they can log time against, or which time off types they can pick. Beebole applies both — a person needs the permission and the item.
No. Each person in Beebole holds exactly one role. If someone needs a mix of permissions from two roles, duplicate one of them and adjust the copy.
For each permission, View lets the role see the data and Edit lets it create, change, or delete it, each scoped to the targets you select. A permission with no targets selected shows Not allowed, and that area of Beebole is hidden from the role entirely.
Every new account starts with Admin, Manager, and Employee. The Admin role has the Admin role (full access) box checked, which grants every permission. You can edit these roles or add your own.
No. Beebole saves every change to a role automatically — adding a target, unchecking a permission, or renaming the role. There is no Save button on the roles page.