search

Choosing User Access Levels

Daylite supports several levels of user access to help manage what your users can see and do. These differ from permissions by defining the overall scope of access—such as whether a user can access only their own records, modify app preferences, or view everything regardless of ownership—whereas permissions control the specific actions a user can take on individual records, like viewing, editing, or deleting them.

In addition to user access levels within your database, Daylite also includes account-level roles. These roles determine what a user can do outside the Daylite app, such as managing billing, adding or removing users, or exporting the full database. A user can be an Administrator inside Daylite but still lack access to account-wide settings unless they’re also designated as an Account Administrator.

hashtag
In App User Access Levels

hashtag
Superuser

Superuser is the highest level of access within the Daylite app and should only be given when absolutely necessary such as head of HR, Head of IT, or the owner of the business. The first user created in the account is automatically given Superuser access.

Superusers can:

  • Bypass permissions on record allowing them to view and edit all records*

  • Access and modify all Daylite Settings.

  • Configure access settings for all users.

  • Make other users Superusers.

circle-info

*To bypass permissions on records, you must turn on Superuser access. This is a temporary access mode and must be turned on each time Daylite is reopened.

To turn on: Go to Daylite > Superuser Access > Enable.

hashtag
Administrator

The second-highest level of access in Daylite, typically assigned to trusted team members such as managers or IT administrators.

Administrator users can:

  • Access and modify all Daylite Settings.

  • View and edit records according to their assigned permissions.**

  • Configure access levels for Limited, Normal and other Administrators.

circle-info

**Administrators cannot bypass record-level permissions

hashtag
Normal Access

The standard access level for most Daylite users and the default user access level when adding new users

Normal users can:

  • View and edit records based on their assigned permissions.

  • Configure personal settings.

  • Additional permissions can be customized in Advanced Access options under Users & Teams.

hashtag
Limited Access

A restricted access level designed for users who only need to work with their own data or assigned records. Ideal when working with sensitive data, contractors, or temporary workers.

Limited users can:

  • View and edit only the records they own or that are assigned to them.

  • Collaborate on shared items within the limits of their ownership

  • Additional permissions can be customized in Advanced Access options under Users & Teams. Settings

hashtag
Account Settings Access Levels

The Account Administrator is a special role separate from the in-app access levels. In addition to being a Superuser, the first user on the account is automatically assigned as the Account Administrator. This user can manage account-level settings that are not available inside the Daylite app.

Account Administrators can:

  • View and edit billing information, including invoices

  • Add or remove users from the account

  • Delete or clone the database

  • Export the full database

To change change the Account Adminstrator, have the current Account Administrator contact supportenvelope.

Last updated

Was this helpful?