Articles on: Documents

Folder Permissions

πŸ” Folder Permissions

"Control who sees what."
Flexible, document-based permissions for precise access control.


Inside Brainframe, everything is treated as a documentβ€”policies, procedures, risks, non-conformities, and more. This enables a flexible permission model through folder permissions.


πŸ“Œ A single folder can have multiple views, each with its own permissions.


Example: A folder named Product X could have views for Security, Documentation, and GDPR, each visible to different audiences, as explained in Folder management.



1️⃣ Opening the Permissions Screen

You can configure permissions for all folders except INBOX.


  1. Click on Modify folder.


  1. Select the Permissions button.


This opens the full Permissions screen:


πŸ“Œ Users can only see folders where they have at least READ permission.


2️⃣ Assigning Permissions


  1. Start typing the name of an existing user, or enter the email of a new contact to invite them.


πŸ“Œ Permissions can be assigned to individual users or groups.


  1. READ permissions allow:
  • Opening all documents in the folder.
  • Approving documents with an unassigned approval, or those assigned directly.
  • Performing KPI/Risk readings on documents.


  1. READ + WRITE permissions allow everything from READ plus:
  • Creating and deleting documents in the current folder.
  • Modifying all aspects of documents (title, properties, planning, etc.).
  • Moving or linking documents to other folders.


  1. READ + WRITE + MANAGE permissions allow everything above plus:
  • Modifying folder and view names.
  • Changing folder permissions.
  • Creating, moving, or deleting subfolders.


  1. You can select multiple users or groups at once.


  1. Current permissions can be applied to all subfolders.



Due to our ability to link folders in multiple places, and contrary to how typical folder permissions inherit permissions, in Brainframe folders are always only configured on the current folder (and not on its subfolders). To simulate inheritance you can use step 5 and 6 explained above


3️⃣ Best Practices

  • πŸ‘₯ Use groups instead of individuals when possible to simplify management.
  • πŸ”„ Apply permissions to subfolders if consistent access is required.
  • 🚨 Review MANAGE access carefullyβ€”limit it to trusted admins.
  • πŸ“ Document your permission model for audit readiness.
  • πŸ” Audit permissions regularly to ensure compliance with least privilege.



🎯 Visual Checklist

  • [x] Permissions screen opened
  • [x] Correct users/groups added
  • [ ] Appropriate access level (READ/WRITE/MANAGE) assigned
  • [ ] Subfolder permissions applied if required
  • [ ] Permission model documented and reviewed


Updated on: 11/09/2025

Was this article helpful?

Share your feedback

Cancel

Thank you!