Skip to main content
All CollectionsManaging Access and Security
Access Rights
Access Rights
Bianca Wetter avatar
Written by Bianca Wetter
Updated over a week ago

Introduction

The access rights within Sana AI determine which users can use or manage content and integrations. These rights keep sensitive information limited to authorized users, and can mirror the permissions set in connected external systems like Google Drive or Sharepoint. Access rights are structured in three hierarchical levels: Workspace, Collection, and Asset. At each level, there are three main roles—Owners, Editors, and Viewers—each with specific permissions designed to facilitate a secure and collaborative environment.

Workspace Level

Owners: Have the highest level of authority within the workspace. Owners can:

  • Create and manage collections

  • Upload assets

  • Create and update assistants

  • Create shared integrations

  • Create and share prompts across the organization through templates

🌟 Owners cannot access an individual user’s private collections, files, or prompts unless these are explicitly shared with them.

Editors: Come second in the order of hierarchy. Editors can:

  • Create shared collections

  • Contribute to a collection by adding or modifying content but cannot delete the collection

  • Add files to shared collections (if given access to them)

  • Manage control specific administrative capabilities, such as managing certain settings or inviting new users as Viewers

  • Create and save their own prompt templates

Viewers: Primarily engage with the system's existing content, utilizing assistants and chat functionalities. Viewers can:

  • Create invite-only collections

  • Create and save their own prompt templates

  • Connect and manage private integrations

  • Upload and selectively share their private files

  • Create and save their own templates

  • Viewers have read-only access to the workspace, meaning they can view content within the workspace that they have been given access to but cannot make any changes.

Collection Level

  • Owners: Can fully manage the collection including adding content, modifying other users' permissions, or deleting the collection.

  • Editors: Can manage which files belong to the collection, adding or removing content as necessary.

  • Viewers: Have read-only access, enabling them to engage with the collection's contents through chat.

Asset Level

  • Owners: Have complete control over the asset's lifecycle and accessibility, including the ability to delete, edit, share, and view it.

  • Editors: Can edit, share, or view the asset, providing them with a level of control that does not extend to deletion.

  • Viewers: Are limited to viewing the asset, ensuring they have access, without the ability to alter or distribute it.

Did this answer your question?