Help & Documentation

Learn how to use StructureGram

Access, Teams, and Sharing Overview

Context and Why This Exists

StructureGram keeps organisation data separated by organisation, then uses groups to control who can see and work on specific client or project data.

This matters when your organisation has different working groups, external advisers, or client users who should only see selected groups.

What the Feature Does

Access is controlled in layers:

LayerWhat it controlsWhere you manage it
Organisation roleWhether someone is an organisation admin, internal member, or external guestAccount > Team
Member default accessWhat an internal member can do in open groups by defaultAccount > Team
Group accessWhether a group is open to internal defaults or restrictedA group's Team button
Member overridesExceptions for individual internal members on one groupA group's Team button
Team overridesAccess for all members of a team on one groupA group's Team button
Guest sharingExplicit access for an external guest on one groupA group's Share button

This avoids setting every permission manually for every user on every group. You can set broad defaults where that is appropriate, then use group settings, teams, and overrides for more specific access.

Permission Levels

LevelTypical useCan viewCan editCan delete group dataCan manage group access
ViewerRead-only accessYesNoNoNo
EditorWorking accessYesYesNoNo
Group ManagerTrusted internal group administratorYesYesYesYes
Tenancy AdminOrganisation administratorYesYesYesYes

Guests can only be shared as Viewer or Editor. They cannot manage access, join teams, or inherit access from open groups.

Member Baseline Roles

Internal members have a baseline role that applies to open groups:

Product roleWhat it means
Member - Group AdminGroup Manager access by default.
Member - EditEditor access by default.
Member - ViewViewer access by default.
Member - No Baseline AccessNo default group access. Access must be granted by team or member override.

Member - No Baseline Access does not mean the person can never access anything. It means they do not receive automatic access from the organisation baseline.

How Access Is Decided

StructureGram uses the strongest access available to the person for the group.

For an internal member, access may come from:

  • Their member default access.
  • A direct member override on the group.
  • A team override on the group.

For a guest, access only comes from an explicit group share.

Group Access On or Restricted

A group's Team dialog includes Member baseline access.

When Group access: On is enabled, internal members can access the group according to their organisation-level member default access.

When the group is Restricted, internal member defaults do not apply. Only tenancy admins, member overrides, team overrides, and explicit guest shares can access it.

Best Practice

Use broad defaults for people who work across most groups. Use restricted groups and overrides for sensitive groups.

Use teams when the same set of people needs the same access across multiple groups. Use member overrides only for exceptions.

For smaller firms, baseline access is usually easier to manage. For larger firms or department-based access, consider using Member - No Baseline Access with teams.

Related Topics