The permission structure consist of five elements: users, groups, roles, abilities and assets (e.g. connections, models, folders). Users are added to groups and a group is assigned a role on a specific assets that grants the users in the group certain abilities.

To exemplify, you might have some sensitive data from an HR system that only HR staff should have access to. To achieve that you would create a new Folder in the Workspace root called “HR Analytics” and a Group called “HR”. In the folder, you would have your HR system connections extracting the raw data as well as models tranforming it to analytics tables.

On the Folder (“HR Analytics”) you would give the HR Group a Manager Role whereby they would be able to do a wide variety of things (see Abilities for a full overview) but no one else would be able to see the Folder.

Setting and Seeing Permissions

You can change an assets permissions by navigating to the folder with your asset, click the three dots on the right-hand side of the row and click Sharing.

You can view the permissions on an asset by clicking on the downward-facing arrow in the Sharing column.