Organisation security

Roles, permissions and audit trail

Back to dashboard

Phase 1

Extensible role matrix

RLS-backed model

owner

Full organisation control across practitioners, clients and settings.

organisationpractitionersclientsbilling lateraudit

Must not bypass source separation or AI review states.

admin

Operational access for scheduling, onboarding and records.

clientshouseholdsformscalendardocuments

Clinical notes remain practitioner-led.

practitioner

Assigned-client care delivery and practitioner notes.

assigned clientsmeal plansreportsprotocol drafts

Only assigned clients unless admin-granted.

client

Own records, approved plans, bookings and resources.

own logsown uploadsown bookings

Cannot view practitioner-only drafts or other household logs.

caregiver

Restricted delegated access for another client.

allowed meal logsallowed symptom logsshared shopping

Cannot view reports unless explicitly granted.

household member

Own logs and shared household meal planning where allowed.

own logsshared meal plan visibility

No access to another member's symptoms without permission.

Recent security events

Viewed report attachment

high

Ruth Mensah Medichecks PDF

Miriam Blake - Today 08:50

Granted caregiver logging permission

medium

Grace Carter for Amelia Carter

Ruth Admin - Yesterday 16:10

Approved AI report summary

medium

Amelia Carter YorkTest summary

Miriam Blake - Yesterday 11:20