Admin & Access Control
Tenant admins shape the workspace for the rest of the team: who sees what, which fields exist, how pages are arranged, and what changes are recorded. The audit trail captures every material change server-side.
On this page
Roles and permissions
Three role tiers that cover most team structures.
Every user in a workspace has one of three roles. Regular users see and work with the records they have access to. Tenant admins have full control over the workspace: users, fields, pipelines, integrations, and configuration. Platform administrators exist for DealJourney operations and are not assigned by customer admins.
Role assignment is straightforward; page-level access control is where things get nuanced.
Page-level access
Decide which parts of DealJourney each role sees.
Not every team needs to see every page. Support shouldn't necessarily see revenue reports; sales shouldn't necessarily see the ticket inbox. From the Page Access configuration, tenant admins can enable or disable individual pages per role. Pages disabled for a role are hidden from navigation and return an access denied response if accessed directly.
Page access pairs with role permissions: a regular user with ticket access can work tickets; a tenant admin always has full access regardless of page access settings.
Custom fields and field customisation
Shape the data model to match how your business works.
From Entity Fields, tenant admins can add custom fields to opportunities, leads, contacts, customers, tickets, subscriptions, and invoices. Supported types include short text, long text, number, date, single select, multi-select, and boolean. Each field can be marked required, hidden on the creation form, or exposed through the API.
The same page can rename and reword the built-in fields, turning "Amount" into "Contract Value", marking "Close Date" as required, or adding helper text. The goal is that the product uses your company's vocabulary, not ours.
The audit trail
Every material change is recorded server-side.
DealJourney writes an audit event for every material change in the workspace: record creation, update, and deletion, configuration changes, integration sync events, webhook deliveries, user invites, and role changes. The audit trail is a compliance-grade log your team can request a copy of if you need to investigate an incident or demonstrate controls to a customer's security team.
Managing users
Invite, remove, and reassign team members.
Tenant admins add users by email invitation and set their role at invite time. Removing a user blocks their sign-in while preserving the historical records they touched. A customer conversation from two years ago still shows the original owner. When ownership needs to move, bulk reassignment on the opportunity list view is usually the fastest path.