AmpliFund employs a modular user security model so that you can have detailed control over which records and what level of access your users will have. The base user security is set on the User Details page. This includes record types, level of access for each, and any account-wide restrictions for the user. Some record types may not be applicable to your organization based on your account subscription.
On individual records, users can be added as Managers or Additional Users. There can only be one manager designated per record, but Managers and Additional Users share the same level of permissions. Grants also have the Grant Writer role, and Awards have Funder and Recipient roles.
Finally, users can be assigned as Assignee on line items, performance goals, tasks, and workflow actions.
Base User Security
Access Levels
Access levels can be applied to each Record Type.
- Admin: User can view, create, edit, and delete records; can add progress against record and collaborate; has access to Administration areas
- Editor: User can view and edit records (cannot create or delete); can add progress against record and collaborate
- User: User can view record details (cannot create, edit or delete); can add progress against record and collaborate
- View Only: User can view record only (cannot create, edit, delete, add progress, or collaborate)
Record Types
- Account: Account access will apply to all record types. All Account users will have access to all areas of the account, including Administration. Account Admin are the only users who can create and delete user records, and can act as other users.
- Applications (Applicant Portal): This includes the Applicant Portal and any applications your organization creates. It does not include any applications that are submitted to your organization.
- Awards: This includes awards that your organization distributes, as a grant funder.
- Departments (all records linked to departments): This includes any records that are linked to the user’s department, which could include awards, funds, grants, opportunities, or projects.
- Funds: This includes all fund records. Users will be able to see which opportunities and awards are tied to the fund, but will not have access to those records in detail.
- Grants: This includes all grants that your organization has received, as well as any grant opportunities or sub-awards.
- Opportunities: This includes all opportunities, including any grant opportunities. Admins and Editors can also access Form Templates.
- Projects: This includes all projects. It does not include any grants linked to the projects.
- Research: This includes the Research area.
Advance Restrictions
Clients can also define account-wide restrictions for users. In these cases, users will not be able to view or access restricted content, regardless of any other role or permission.
- Approvals: User cannot approve or reject records including payment requests, payment authorizations, or amendments
- Budget: User cannot access budget or expense data
- Payment Authorizations: User cannot create or edit payment authorizations. Can still view.
- Post-Award: User cannot access any post-award data
- Salary: User cannot access any salary data
Record-Level Permissions
Users can be assigned direct access to records as Managers, Additional Users, or other roles as applicable. None of these fields are required.
- Managers: Managers are available on Awards, Funds, Grants, Opportunities, and Projects. Awards designates Funder and Recipient Managers. Managers have full access to edit or delete their record. There can only be one manager per record.
- Additional Users: Additional Users are available on Awards, Funds, Grants, Opportunities, and Projects. Awards designates Funder and Recipient Additional Users. Additional Users have the same permissions as a Manager and have full access to edit or delete their record. There can be multiple Additional Users per record.
- Grant Writers: Grant Writers are only available on Grant records to support pre-award grant-seeking processes. Grant Writers have full access to the pre-award and collaboration areas of the grant. They do not have post-award access. There can be multiple Grant Writers per record.
- Assignees: Assignees are available on budget line items, performance goals, tasks, and workflow actions. Assignees have edit access to their record and can track progress against it, as applicable. There can be multiple Assignees per record.
Comments
0 comments
Please sign in to leave a comment.