Role-Based Access Control

Understanding Roles and Permissions

C2MS uses a role-based access control (RBAC) model to manage what each user can view, create, edit, and delete across the platform. Roles are collections of permissions that can be assigned to users, ensuring consistent access policies across your organisation. The system ships with default roles for common insurance functions, and administrators can create custom roles to match their specific organisational structure.

Default Roles

• Administrator — full access to all modules including user management and system configuration

• Underwriter — access to policy, quote, and underwriting modules with approval authority

• Claims Handler — access to claims module with reserve and settlement permissions

• Broker — limited access to submit quotes, view policy documents, and report claims

• Viewer — read-only access to reports and dashboards without modification rights

Custom Roles and Granular Permissions

Create custom roles from Administration > Roles > New Role. The permission editor presents a matrix of modules and actions, allowing you to toggle individual capabilities such as "Claims: Approve Settlement" or "Policies: Cancel Policy" independently. Permissions cascade logically — granting edit access to a module automatically includes view access.

Users can hold multiple roles, and their effective permissions are the union of all assigned roles. This allows flexible configurations such as a senior claims handler who also has underwriting referral authority. Changes to role permissions take effect immediately for all users assigned to that role.