TARE wordmark
Back to Knowledge Base

Role-Based Access Control (RBAC)

Understanding how to isolate departmental data and enforce strict permission hierarchies.

Tenant-scoped access controls and Row-Level Security (RLS) are used to protect organization data at the database boundary. Application permissions and security review still need to match the customer workflow and deployment scope.

Dynamic Permissions

By default, TARE includes Owner, Admin, Scientist, and Viewer roles. However, enterprise tiers can configure custom policies.

  • Finalized Record Controls: Restrict changes to finalized records according to the configured workflow.
  • Compartmentalization: Restrict Contract Research Organizations (CROs) to only view specific project folders.