> ## Documentation Index
> Fetch the complete documentation index at: https://docs.truthlocks.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Platform staff management

> Invite, manage, and configure roles for platform admin team members.

The platform staff page lets you manage the team of administrators who operate the Truthlocks platform. You can invite new staff members, assign roles, and deactivate or reactivate accounts.

<Info>
  Only users with the **super\_admin** role can manage platform staff. Other staff roles can view the staff list but cannot make changes.
</Info>

## Staff roles

Each staff member is assigned one or more roles that determine their permissions:

| Role              | Permissions                                                                     |
| :---------------- | :------------------------------------------------------------------------------ |
| **Super admin**   | Full platform access — manage staff, tenants, billing, and all settings         |
| **Billing admin** | Manage billing operations, rate cards, invoices, and subscription overrides     |
| **Content admin** | Manage blog posts, newsletters, and knowledge base content                      |
| **Support admin** | Access tenant support tools, create impersonation sessions, manage privacy jobs |
| **Reviewer**      | Review and approve tenant and issuer applications                               |

A staff member can hold multiple roles. For example, a team member might be both a **billing admin** and a **reviewer**.

## Viewing staff

Navigate to **Staff** in the platform sidebar. The page displays a searchable, paginated table of all staff members with their name, email, assigned roles, status, and join date.

Use the search bar to filter by name or email. Each role is shown as a color-coded badge for quick visual identification.

## Inviting a staff member

<Steps>
  <Step title="Open the invite form">
    Click **Add Staff** to open the invitation dialog.
  </Step>

  <Step title="Enter details">
    Provide the new staff member's **email address** and **display name**.
  </Step>

  <Step title="Assign roles">
    Select one or more roles from the checklist. At least one role is required.
  </Step>

  <Step title="Send the invitation">
    Click **Add Staff Member** to send the invite. The new member receives an email with instructions to set up their account.
  </Step>
</Steps>

<Tip>
  Invited staff members appear in the list immediately with an **active** status. They can sign in as soon as they complete account setup.
</Tip>

## Staff detail page

Click any staff member row to open their detail page. The detail page shows the member's name, email, status, creation date, and last updated date.

### Editing a display name

The detail page includes an editable **Display Name** field. Change the name and click **Save Name** to update it.

### Managing roles

The roles section shows all available roles with descriptions and checkboxes. Toggle roles on or off, then click **Save Roles** to apply changes.

| Role              | Description                                                  |
| :---------------- | :----------------------------------------------------------- |
| **Super admin**   | Full platform access including settings and staff management |
| **Billing admin** | Manage billing, rate cards, and financial operations         |
| **Content admin** | Manage blog posts, newsletters, and content                  |
| **Support admin** | Access support tools and tenant health dashboards            |
| **Reviewer**      | Review issuer applications and attestation requests          |

### Deactivating and reactivating

From the detail page, use the **Deactivate Staff Member** button to revoke platform access. The member's record is preserved and can be restored later with **Reactivate Staff Member**. A confirmation prompt appears before either action takes effect.

<Warning>
  Deactivating a staff member does not revoke any active impersonation sessions they may have created. Revoke those sessions separately from the [support access](/security/support-access) page if needed.
</Warning>

## Next steps

<CardGroup cols={2}>
  <Card title="Support access sessions" icon="shield" href="/security/support-access">
    How impersonation sessions work and how they are audited.
  </Card>

  <Card title="RBAC" icon="users" href="/security/rbac">
    Role-based access control for tenant-level users.
  </Card>
</CardGroup>
