Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.carelane.io/llms.txt

Use this file to discover all available pages before exploring further.

Carelane uses a hierarchical role-based access control (RBAC) system to manage permissions across organizations, studies, sites, and service providers.

Role Hierarchy

Roles exist at four levels, each with its own scope of permissions:

Organization Roles

Control access to organization-wide settings and resources.

Study Roles

Manage study-level operations and oversight.

Site Roles

Handle site-specific data collection and participant management.

Service Provider Roles

Enable external service providers like laboratories.

Role Scopes Overview

ScopeRolesPurpose
OrganizationAdministrator, MemberManage organization settings and access
StudyStudy Administrator, CI, D-CI, Data Reviewer, Reviewer, CollaboratorOversee study operations and data review
SitePI, Site Admin, Deputy PI, Sub-Investigator, CRC, Data Entry Specialist, Site Collaborator, Authorized Signer, Local Lab Lead/MemberExecute site operations and data entry
Service ProviderLaboratory Lead, Laboratory AssistantProvide centralized services across sites

Permission Inheritance

Higher-level roles do not automatically grant lower-level permissions. An organization administrator still needs explicit study or site roles to access specific studies or sites.

Role Assignment

Roles are assigned through invitations:
1

Invite User

An administrator invites a user via email to join at a specific level (organization, study, or site).
2

Select Role

During invitation, the administrator selects the appropriate role for the user.
3

User Accepts

The invited user accepts the invitation and gains the assigned permissions.

Multiple Roles

Users can hold multiple roles simultaneously:
  • Different roles in different studies within the same organization
  • Different roles at different sites within the same study
  • Roles at multiple levels (e.g., Study Administrator and Site PI)
When a user has multiple roles, they receive the union of all permissions from those roles.

Permissions Matrix

Every member-management page (Organisation, Study, and Site) includes a Permissions Matrix that lets you see exactly what each role can do. The matrix is scope-aware — it only shows roles and permissions relevant to the level you are viewing — and supports two view modes:
ViewLayout
By Permission (default)Permissions are listed as rows, grouped by feature area; roles appear as columns. Ideal when you want to see “who can do X?”.
By RoleRoles are listed as rows; permissions appear as columns. Ideal when onboarding a new team member and you need to answer “what does this role give them?”.
Toggle between the two with the buttons at the top of the matrix.

Role Descriptions

When assigning a role, the role card shows a short description of the role’s purpose alongside icons for each permission it carries — so you can make an informed choice without leaving the invitation flow.

Audit Trail

All role assignments and changes are recorded in the audit trail, including:
  • Who made the assignment
  • When the change occurred
  • The previous and new role values