Default Roles

Introduction

User Roles in SAFE define data access, operational permissions, and the scope of control across the platform. SAFE supports three distinct role types to address varying levels of access control and flexibility:

Default Roles (Admin, Viewer): Out-of-the-box roles with predefined permissions
Static Custom Roles: Custom roles with fixed permissions mapped to Groups/Organizations
Smart Custom Roles: Advanced roles with granular, action-level permissions (only for Third-Party workflows)

Default Roles (Admin & Viewer)

These are system-defined roles available by default in SAFE and cannot be modified.

CRQ Admin - Full access
CRQ Viewer - Read-only access across SAFE Modules
TPRM Admin - Full access
TPRM Viewer - Read-only access across Third-parties

Key Characteristics

Predefined by SAFE
No configuration or customization allowed
Ideal for standardized access control

Default Roles User Access - CRQ

SAFE Modules	Features	Default Roles
SAFE Modules	Features	CRQ Admin	CRQ Viewer
Dashboards	View all Dashboards	Yes	Yes
	Add Dashboard	Yes	Yes
	Duplicate Dashboard	Yes	Yes
	Delete Dashboard	Yes	Yes
Risk Scenarios	Create Risk Scenarios	Yes	No
	View Risk Scenarios	Yes	Yes
	Edit Risk Scenario	Yes	No
	Duplicate Risk Scenario	Yes	No
	Delete Risk Scenario	Yes	No
	Edit Control Parameters	Yes	No
	View Scoring Factors	Yes	Yes
	Edit Scoring Factors	Yes	No
Groups	Create Group	Yes	No
	View Groups List	Yes	Yes
	Edit Group	Yes	No
	Duplicate Group	Yes	No
	Delete Group	Yes	No
	View Questionnaire	Yes	Yes
	Submit Questionnaire Assessment	Yes	No
	Reuse Existing Questionnaire Assessment	Yes	No
	Controls - What If Analysis	Yes	No
	Edit Control Parameter	Yes	No
People	View Users List	Yes	Yes
	Edit Users	Yes	No
	Delete Users	Yes	No
Technology	View Asset List	Yes	Yes
	Delete Assets	Yes	No
	Edit Assets	Yes	No
	Bulk Delete Assets	Yes	No
	Bulk Edit Assets	Yes	No
Third Party	Add Third Party (Individual & Bulk Upload)	Yes	No
	View Third Parties	Yes	Yes
	Edit Third Party	Yes	No
	Delete Third Party	Yes	No
	Edit Third Party Status	Yes	No
	View Third Party Details	Yes	Yes
	Submit Questionnaire Assessment	Yes	No
	Edit Control Parameter	Yes	No
	Upload Documents	Yes	No
Integrations	View List of Supported & Configured Integrations	Yes	No
Integrations	Configure Integrations	Yes	No
Control Centre	View Controls List & Details	Yes	Yes
	Edit Control Parameter	Yes	No
	What If Analysis	Yes	Yes
	Reuse Control Maturity Assessment	Yes	No
	Reset Control Maturity Assessment	Yes	No
Questionnaire	View Questionnaires	Yes	Yes
Questionnaire	Submit Questionnaire Assessment	Yes	No
Settings	My Profile	Yes	Yes
	Security	Yes	Yes
	API Credentials	Yes	No
	User Management	Yes	No
	Role Management	Yes	No
	Invitations	Yes	No
	Custom Fields	Yes	No
	Attack Surface	Yes	No
	Company Settings	Yes	No
	Third-party Tiering	Yes	No
	Advanced	Yes	No
	About	Yes	Yes

Default Roles User Access - TPRM

SAFE Modules	Features	Default Roles
SAFE Modules	Features	CRQ Admin	CRQ Viewer
Dashboards	View all Dashboards	Yes	Yes
	Add Dashboard	Yes	Yes
	Duplicate Dashboard	Yes	Yes
	Delete Dashboard	Yes	Yes
Third-Party	Add Third Party (Individual & Bulk Upload)	Yes	No
	View Third Parties	Yes	Yes
	Edit Third Party	Yes	No
	Delete Third Party	Yes	No
	Edit Third Party Status	Yes	No
	View Third Party Details	Yes	Yes
	Submit Questionnaire Assessment	Yes	No
	Edit Control Parameter	Yes	No
	Upload Documents	Yes	No
Integrations	View List of Supported & Configured Integrations	Yes	No
Integrations	Configure Integrations	Yes	No
Settings	My Profile	Yes	Yes
	API Credentials	Yes	No
	User Management	Yes	No
	Role Management	Yes	No
	Invitations	Yes	No
	Custom Fields	Yes	No
	Company Settings	Yes	No
	Third-party Tiering	Yes	No
	Advanced	Yes	No
	About	Yes	Yes
	Automation Settings	Yes	No
	Default Notifications	Yes	No