Compliance Permissions

About Compliance roles

Iru Compliance uses role-based access control. The permissions overview spells out what each role can open or change: search, actions, frameworks (controls and control-linked evidence), artifacts, sources, Trust Center, and related areas. Behavior varies by role. In the tables, Compliance Admin, Compliance Collaborator, and Compliance Auditor sit next to Admin, Standard, and Auditor so you can compare Compliance-only assignments to the same permission pattern.

Need help with a step? Contact Iru Support.

Access Levels

Admin

Full access to all compliance functionality, including framework management, settings configuration, and administrative controls.

Standard

Most of the same permissions as Admin, with limits on framework and settings management.

Help Desk

Operational access for day-to-day compliance work, including managing actions, artifacts, and evidence collection.

Secrets Auditor

Read-only access with the ability to generate automated artifacts and assess artifact relevance.

Auditor

Read-only access for audit and review. In the Frameworks matrix, Auditor does not have View controls (the control definitions in a framework) but does have View control action and View control artifact, so reviewers can still follow actions and evidence tied to controls without editing control definitions. See the matrix for the full list.

Iru Support

Read-only access to support customer issues and troubleshooting.

Compliance-only roles

These roles apply only within Iru Compliance. The Compliance Admin, Compliance Collaborator, and Compliance Auditor columns match Admin, Standard, and Auditor; they do not grant access outside the Compliance area. For tenant-wide roles across Endpoint, Identity, and the rest of the platform, see Team Member Role Permissions.

Compliance Admin

Administrator-level access in Iru Compliance only. Matches the Admin column in the permissions overview. This is not tenant-wide Administrator access across products.

Compliance Collaborator

Matches the Standard column for team members whose access is limited to Iru Compliance.

Compliance Auditor

Matches the Auditor column for team members whose access is limited to Iru Compliance. Under Frameworks, Compliance Auditor behaves like Auditor: no View controls, with View control action and View control artifact for reviews.

Permissions Overview

General

Permission	Admin	Compliance Admin	Standard	Compliance Collaborator	Help Desk	Secrets Auditor	Auditor	Compliance Auditor	Iru Support
Search	✅	✅	✅	✅	✅	✅	✅	✅	✅

Actions

Permission	Admin	Compliance Admin	Standard	Compliance Collaborator	Help Desk	Secrets Auditor	Auditor	Compliance Auditor	Iru Support
View list	✅	✅	✅	✅	✅	✅	✅	✅	✅
View action details	✅	✅	✅	✅	✅	✅	✅	✅	✅
Create	✅	✅	❌	❌	❌	❌	❌	❌	❌
Update	✅	✅	✅	✅	✅	✅	❌	❌	❌
Delete	✅	✅	✅	✅	✅	✅	❌	❌	❌
Upload artifact	✅	✅	✅	✅	✅	✅	❌	❌	❌
Delete artifact	✅	✅	✅	✅	✅	✅	❌	❌	❌
Generate automated artifact	✅	✅	✅	✅	✅	✅	✅	✅	❌
Generate automated artifact bulk	✅	✅	✅	✅	✅	✅	✅	✅	❌
Assess artifact relevance	✅	✅	✅	✅	✅	✅	✅	✅	❌
Read comments	✅	✅	✅	✅	✅	✅	✅	✅	✅
Create comment	✅	✅	✅	✅	✅	✅	✅	✅	❌
Update comment	✅	✅	✅	✅	✅	✅	✅	✅	❌
Delete comment	✅	✅	✅	✅	✅	✅	✅	✅	❌
Read activity logs	✅	✅	✅	✅	✅	✅	✅	✅	❌

Frameworks

Permission	Admin	Compliance Admin	Standard	Compliance Collaborator	Help Desk	Secrets Auditor	Auditor	Compliance Auditor	Iru Support
List frameworks	✅	✅	✅	✅	✅	✅	✅	✅	✅
View framework details	✅	✅	✅	✅	✅	✅	✅	✅	✅
View framework readiness	✅	✅	✅	✅	✅	✅	✅	✅	✅
Add frameworks	✅	✅	❌	❌	❌	❌	❌	❌	❌
Remove frameworks	✅	✅	❌	❌	❌	❌	❌	❌	❌
View controls	✅	✅	✅	✅	✅	✅	❌	❌	❌
Add controls	✅	✅	✅	✅	✅	✅	❌	❌	❌
Edit control	✅	✅	❌	❌	❌	❌	❌	❌	❌
Remove controls	✅	✅	❌	❌	❌	❌	❌	❌	❌
View control action	✅	✅	✅	✅	✅	✅	✅	✅	✅
Add control action	✅	✅	❌	❌	❌	❌	❌	❌	❌
Edit control actions	✅	✅	✅	✅	✅	✅	❌	❌	❌
Remove control action	✅	✅	❌	❌	❌	❌	❌	❌	❌
View control artifact	✅	✅	✅	✅	✅	✅	✅	✅	✅
Upload control artifact	✅	✅	✅	✅	✅	✅	❌	❌	❌
Remove control artifact	✅	✅	✅	✅	✅	✅	❌	❌	❌

Artifacts

Permission	Admin	Compliance Admin	Standard	Compliance Collaborator	Help Desk	Secrets Auditor	Auditor	Compliance Auditor	Iru Support
View list of artifacts	✅	✅	✅	✅	✅	✅	✅	✅	✅
View artifact details	✅	✅	✅	✅	✅	✅	✅	✅	✅
Edit artifact details	✅	✅	✅	✅	✅	✅	❌	❌	❌
Upload artifact	✅	✅	✅	✅	✅	✅	❌	❌	❌
Replace file	✅	✅	✅	✅	✅	✅	❌	❌	❌
Remove artifact	✅	✅	✅	✅	✅	✅	❌	❌	❌

Sources

Permission	Admin	Compliance Admin	Standard	Compliance Collaborator	Help Desk	Secrets Auditor	Auditor	Compliance Auditor	Iru Support
View list of sources	✅	✅	✅	✅	✅	✅	✅	✅	✅
Connect source	✅	✅	✅	✅	✅	✅	❌	❌	❌
Disconnect source	✅	✅	✅	✅	✅	✅	❌	❌	❌

Trust Center: Editor

Permission	Admin	Compliance Admin	Standard	Compliance Collaborator	Help Desk	Secrets Auditor	Auditor	Compliance Auditor	Iru Support
Read settings	✅	✅	✅	✅	✅	✅	✅	✅	✅
Create settings	✅	✅	❌	❌	❌	❌	❌	❌	❌
Update settings	✅	✅	❌	❌	❌	❌	❌	❌	❌
Upload logo	✅	✅	❌	❌	❌	❌	❌	❌	❌
Remove logo	✅	✅	❌	❌	❌	❌	❌	❌	❌
Upload NDA	✅	✅	❌	❌	❌	❌	❌	❌	❌
Remove NDA	✅	✅	❌	❌	❌	❌	❌	❌	❌
Read certifications	✅	✅	✅	✅	✅	✅	✅	✅	✅
Upload certification icon	✅	✅	❌	❌	❌	❌	❌	❌	❌
Delete custom certification	✅	✅	❌	❌	❌	❌	❌	❌	❌

Trust Center: Answers

Permission	Admin	Compliance Admin	Standard	Compliance Collaborator	Help Desk	Secrets Auditor	Auditor	Compliance Auditor	Iru Support
Read answers	✅	✅	✅	✅	✅	✅	✅	✅	✅
Update answers	✅	✅	❌	❌	❌	❌	❌	❌	❌
Delete answers	✅	✅	❌	❌	❌	❌	❌	❌	❌
Read answers category	✅	✅	✅	✅	✅	✅	✅	✅	✅
Create answers category	✅	✅	❌	❌	❌	❌	❌	❌	❌
Update answers category	✅	✅	❌	❌	❌	❌	❌	❌	❌
Delete answers category	✅	✅	❌	❌	❌	❌	❌	❌	❌

Trust Center: Artifacts

Permission	Admin	Compliance Admin	Standard	Compliance Collaborator	Help Desk	Secrets Auditor	Auditor	Compliance Auditor	Iru Support
Read document category	✅	✅	✅	✅	✅	✅	✅	✅	✅
Update document category	✅	✅	❌	❌	❌	❌	❌	❌	❌
Delete document category	✅	✅	❌	❌	❌	❌	❌	❌	❌

Trust Center: Accounts

Permission	Admin	Compliance Admin	Standard	Compliance Collaborator	Help Desk	Secrets Auditor	Auditor	Compliance Auditor	Iru Support
Read accounts	✅	✅	✅	✅	✅	✅	✅	✅	✅
Read pending accounts	✅	✅	✅	✅	✅	✅	✅	✅	✅
Get signed NDA download URL	✅	✅	✅	✅	✅	✅	✅	✅	✅
Approve account	✅	✅	❌	❌	❌	❌	❌	❌	❌
Delete account	✅	✅	❌	❌	❌	❌	❌	❌	❌

Trust Center: Questionnaires

Permission	Admin	Compliance Admin	Standard	Compliance Collaborator	Help Desk	Secrets Auditor	Auditor	Compliance Auditor	Iru Support
Read questionnaire list	✅	✅	✅	✅	✅	✅	✅	✅	✅
Read questionnaire details	✅	✅	✅	✅	✅	✅	✅	✅	✅
Update questionnaire	✅	✅	❌	❌	❌	❌	❌	❌	❌
Add questionnaire	✅	✅	❌	❌	❌	❌	❌	❌	❌
Delete questionnaire	✅	✅	❌	❌	❌	❌	❌	❌	❌

Common permission issues

Use this section when a control is missing or a button has no effect.

Cannot add or remove a framework

Only Admin or Compliance Admin can add or remove frameworks. Standard, Compliance Collaborator, and Help Desk cannot.

Cannot open control definitions as Auditor

The Frameworks matrix sets View controls to off for Auditor and Compliance Auditor, while View control action and View control artifact stay on so reviewers can follow actions and evidence without editing control definitions. This is expected.

Cannot edit a control’s definition

Only Admin or Compliance Admin can edit existing controls. Other roles may add controls or edit control actions only where the Frameworks matrix allows.

Cannot connect or disconnect a source

Auditor, Compliance Auditor, and Iru Support cannot manage sources. Use Admin, Compliance Admin, Standard, Compliance Collaborator, or Help Desk as listed under Sources.

Cannot upload artifacts on an action

Auditor and Compliance Auditor are read-only for uploads. Use Admin, Compliance Admin, Standard, Compliance Collaborator, Help Desk, or Secrets Auditor as allowed in the Actions table.

Cannot change Trust Center branding, Answers, or questionnaires

Trust Center Editor, Answers, and Questionnaires changes are Admin or Compliance Admin only unless the matrix shows otherwise.

If controls or actions look wrong for your access level, open the Access page to confirm your role (click your name at the bottom of the left navigation, then select Access).

Getting Started With Compliance: core concepts and what you can do in Compliance.
Frameworks Management: who can add or change frameworks by role.
Trust Center Management: external sharing and Trust Center permissions.
Team Member Role Permissions: tenant-wide roles in Iru (alongside the Compliance roles on this page).

Getting Started

Actions

Frameworks

Artifacts

Sources

Trust Center

Workflows

Documentation Index

​About Compliance roles

​Access Levels

​Admin

​Standard

​Help Desk

​Secrets Auditor

​Auditor

​Iru Support

​Compliance-only roles

​Compliance Admin

​Compliance Collaborator

​Compliance Auditor

​Permissions Overview

​General

​Actions

​Frameworks

​Artifacts

​Sources

​Trust Center: Editor

​Trust Center: Answers

​Trust Center: Artifacts

​Trust Center: Accounts

​Trust Center: Questionnaires

​Common permission issues

​Related articles

About Compliance roles

Access Levels

Admin

Standard

Help Desk

Secrets Auditor

Auditor

Iru Support

Compliance-only roles

Compliance Admin

Compliance Collaborator

Compliance Auditor

Permissions Overview

General

Actions

Frameworks

Artifacts

Sources

Trust Center: Editor

Trust Center: Answers

Trust Center: Artifacts

Trust Center: Accounts

Trust Center: Questionnaires

Common permission issues

Related articles