Team & Permissions
Owlat uses role-based access to control what each member of your organization can do. Whether you're a solo operator or a growing team, understanding roles...
Owlat uses role-based access to control what each member of your organization can do. Whether you're a solo operator or a growing team, understanding roles helps you delegate safely and keep your account secure.
Roles
Every team member is assigned one of three roles when they're invited:
- Owner — Full control over the organization, including destructive actions like deleting the org. There should only be one or two owners.
- Admin — Day-to-day operational control. Admins can manage settings, send campaigns, and invite members.
- Editor — Content contributors who can build emails and send test messages but cannot launch campaigns or change settings.
What each role can do
| Capability | Owner | Admin | Editor |
|---|---|---|---|
| Create and edit email content | Yes | Yes | Yes |
| Send test emails | Yes | Yes | Yes |
| Send campaigns | Yes | Yes | No |
| Manage contacts and lists | Yes | Yes | View only |
| Manage organization members | Yes | Yes | No |
| Manage settings, API keys, and webhooks | Yes | Yes | No |
| Delete the organization | Yes | No | No |
Managing your team
Invite members
- Open Settings > Team.
- Click Invite Member.
- Enter the person's email address and choose their role.
- They'll receive an invitation link to join your organization.
Change a member's role
- Open Settings > Team.
- Find the member and update their role from the member controls.
Remove a member
- Open Settings > Team.
- Click the remove action next to the member you want to remove.
Removing a member is immediate. They will lose access to your organization right away.
Waitlist mode
If your Owlat instance has the waitlist feature enabled, new signups are held for admin approval before they can access the dashboard.
How the waitlist works
- A new user signs up and sees a waiting for approval page.
- An admin or owner opens Settings > Waitlist to see pending users.
- The admin approves or rejects each user.
- When approved, the user is redirected to the dashboard in real time and can begin setting up their workspace.
Invited users bypass the waitlist
Users who receive a team invitation link skip the waitlist entirely. When they register through the invitation, they're approved automatically and taken straight to the invitation acceptance flow. This also works for users who are already on the waitlist — accepting an invitation upgrades their status.
The waitlist is an optional feature. When it's not enabled, new signups go directly to the dashboard.
Governance recommendations
- Keep owner and admin seats limited to people who need operational control
- Use Audit Logs to review sensitive operations
- Rotate API keys and webhook secrets on a regular schedule
- Review team access during employee offboarding
Next steps
- API Keys & Webhooks — manage integration credentials
- Audit Logs — track what happened and when
- Billing & Usage — manage your subscription