Configure Roles and Permissions
How to create employee roles, assign administrator access, manage location permissions, and control what team members can do in Resytech.
Roles and permissions in Resytech control two things: what a user can do in the dashboard (administrator vs. standard access), and how their time entries are categorized (employee roles). This guide covers both.
Employee roles
Employee roles are labels you assign to staff for time and attendance tracking. They appear on time entries and in timesheet reports, letting you see hours broken down by role. Common examples: Manager, Guide, Instructor, Front Desk, Mechanic.
Create a role
- In the sidebar, click Company.
- Scroll to the Employee Roles section.
- Click Add Role.
- Enter a Role Name (required, max 100 characters). Names are case-insensitive and must be unique within your company.
- Click Create Role.
The role is immediately active and available for selection during clock-in and when creating time entries.
Edit a role
- In the Employee Roles table, click the edit icon (pencil) next to the role you want to change.
- Update the role name.
- Click Save Changes.
Deactivate a role
Deactivating a role hides it from the clock-in role selector and from the role dropdown when creating new time entries. Existing time entries that reference the role are not affected.
- In the Employee Roles table, click the status badge (Active/Inactive) next to the role.
- The status toggles immediately. Active roles become Inactive, and vice versa.
Delete a role
- In the Employee Roles table, click the delete icon (trash) next to the role.
- Confirm the deletion in the popup.
If the role has existing time entries, it is automatically deactivated instead of deleted. This preserves historical timesheet data. If the role has no time entries, it is permanently removed.
Assign a default role to a user
A default employee role is pre-selected when a user clocks in. This saves time for staff who always work the same role.
- In the sidebar, click Company.
- In the Company Users section, click the edit icon next to the user.
- Select a role from the Default Employee Role dropdown.
- Click Save Changes.
To remove a default role, clear the dropdown selection and save. The user will see "Default" (no role) when clocking in.
Dashboard permissions
Grant administrator access
- In the sidebar, click Company.
- In the Company Users section, click the edit icon next to the user.
- Check the Administrator Access checkbox.
- Click Save Changes.
The change takes effect immediately. The user gains access to company settings, admin timesheet reports, user management, and all configuration pages.
Revoke administrator access
Follow the same steps above, but uncheck the Administrator Access checkbox. The user retains standard access -- bookings, POS, personal timesheet, and clock in/out.
Permission comparison
| Capability | Standard User | Administrator |
|---|---|---|
| View bookings and calendar | Yes | Yes |
| Create and manage bookings | Yes | Yes |
| Use Point of Sale | Yes | Yes |
| Clock in and out | Yes | Yes |
| View own timesheet | Yes | Yes |
| View admin timesheet reports | No | Yes |
| Create/edit/delete any time entry | No | Yes |
| View timesheet summary (all employees) | No | Yes |
| Manage company settings | No | Yes |
| Add, edit, or remove users | No | Yes |
| Manage employee roles | No | Yes |
| Configure locations | No | Yes |
| Access all settings pages | No | Yes |
Location access
Location access controls which locations a user can view and manage data for. This applies to bookings, timesheets, equipment, and all location-scoped data.
Set allowed locations
- In the sidebar, click Company.
- In the Company Users section, click the edit icon next to the user.
- Under Default Location View, select the location the user sees when they first log in.
- Under Allowed Locations, check each location the user should have access to. The default location is always checked and cannot be removed.
- Click Save Changes.
Manage user status
| Action | How | Effect |
|---|---|---|
| Disable a user | Click the status toggle icon next to the user in the Company Users table, or click the disable icon. Confirm in the popup. | The user cannot sign in. Their account and timesheet history are preserved. |
| Enable a user | Click the status toggle icon on a disabled user. Confirm in the popup. | The user can sign in again with their existing credentials. |
| Delete a user | Click the delete icon next to the user. Confirm in the popup. | The user is permanently removed. This action cannot be undone. |
The root user (account owner) cannot be edited, disabled, or deleted. It is marked with a "Root" badge and shows "Protected" in the actions column.
Tips
- Employee roles are not dashboard permissions. An employee role (e.g., "Guide") is a label for time tracking. It does not grant or restrict access to any dashboard features. Dashboard access is controlled only by the Administrator checkbox.
- Use roles to track labor costs. If you pay different rates for different roles, having accurate role assignments on time entries lets you export or calculate costs by role.
- Deactivate roles instead of deleting. If a role is no longer needed but has historical data, deactivation keeps past reports accurate while hiding the role from new entries.
- Location restrictions apply to admins too. Even administrators only see data for their allowed locations. Assign all locations to admin users who need a company-wide view.