Roles & Permissions

ZeroTwo Business uses a three-tier role system to control access to the admin panel and org management features. Roles let you give team leads administrative capabilities while keeping billing and sensitive controls restricted to the right people.

​

The Three Roles

​

Full Permissions Table

​

Role Descriptions

​

Owner

The Owner is the top-level administrator of the org. There is exactly one Owner per organization — the person who created the Business account. What the Owner can do:

• Access and edit all sections of the admin panel
• Manage the Stripe subscription, seats, billing, and invoices
• Invite members, change roles, and remove anyone (including Admins)
• Assign any role — including Admin
• Configure org-level app controls
• Edit organization settings

Constraints:

• The Owner cannot be removed by Admins or Members
• Ownership transfer is not available through the UI — contact ZeroTwo support to transfer ownership

​

Admin

The Admin role is designed for team leads and operations staff who need to manage the workspace but should not have access to billing or financial information. What Admins can do:

• Access the admin panel (/admin)
• Edit organization settings in /admin/general
• Invite new members, view the member list, change roles, and remove members
• Configure org-wide app controls in /admin/apps
• Everything a regular Member can do

Constraints:

• Cannot access /admin/billing — billing is Owner-only
• Cannot assign the Owner role to other members
• Cannot remove the Owner

​

Member

The Member role is the default for anyone invited to the org. Members get full access to ZeroTwo’s AI features with no administrative capabilities. What Members can do:

• Use ZeroTwo chat with unlimited premium messages (Business plan)
• Use all tools: search, image generation, deep research, code execution, file analysis
• Create and manage personal projects
• Use connectors (subject to org-wide app restrictions)
• Access their personal settings, memory, and data controls

Constraints:

• No access to the admin panel
• Cannot invite other members
• Cannot see or change other members’ roles
• Subject to connector restrictions set in /admin/apps

​

Assigning Roles

​

When Inviting

You can assign a role at the time of invitation:

1. Go to /admin/members → click Invite
2. Enter the member’s email
3. Select their role from the dropdown (defaults to Member)
4. Click Send Invite

​

Changing Roles After Joining

To change a role for an existing member:

1. Go to /admin/members → Active Users
2. Click the member’s row to open their details
3. Change the role using the role dropdown
4. Save — the change takes effect immediately

​

Transferring Ownership

Ownership cannot be transferred through the admin panel UI. If you need to transfer the Owner role to another member — for example, if the current Owner is leaving the organization — contact ZeroTwo support at reed@zerotwo.ai. Be prepared to verify your identity and confirm the transfer request.

​

Role Best Practices

• Default to Member for all new hires. Promote to Admin only when needed.
• Limit Admins to the people who actually need to manage membership or connectors.
• Keep billing Owner-only — the Owner should be the person accountable for the subscription.
• Review roles quarterly — as teams change, outdated roles (former admins who moved to IC roles, etc.) should be cleaned up.
• Offboard promptly — when someone leaves, remove them immediately to revoke access. Role removal takes effect without delay.