Buaze has two access layers: platform administrators and business teams. Keeping them separate is important for data access and daily operations.
Tie permissions to positions, not people. People change; positions persist. The small discipline saves a big cleanup later.
Platform administrators
Superadmins can access the whole system. Managers are typically scoped to a specific restaurant or operational area. These roles live in the admin panel.
Business team
Restaurant owners manage the businesses in their account. Team members in the owner panel are used for internal task distribution.
Least privilege
- Grant only the needed role.
- Limit billing access.
- Keep location access narrow.
- Review access regularly.
Kontrol listesi / Checklist
- Superadmin count is limited.
- Manager restaurant scope is correct.
- Owner accounts belong to real business owners.
- Team roles were reviewed.
- Inactive users were removed.
SSS / FAQ
Are admin users and team members the same?
No. AdminUser is platform/operations access; TeamMember belongs to an owner workspace.
Do staff need billing access?
No. Daily operations can be handled without billing permissions.