Permissions
      Back to home
      1. Help Centre
      2. Features
      3. Permissions

      Permissions List

      ⏱️ 3 minutes

      This list explains the categories of permissions that may be assigned to a Group - and therefore the Users within that Group. Permissions on Leo are assigned to Groups. All the Users in that Group then have those permissions.

      There are two types of permission on Leo:

      1. General permissions
        Each Group on Leo is given a set of general permissions that fit the roles of its Users. A Group’s permissions apply to every User in that Group, allowing them to access the areas of Leo that are relevant to them.
      2. Content-specific permissions
        Content-specific permissions grant a Group (and therefore its Users) access to particular Modules, Report Templates, or Registers. The type of access assigned can range from read-only, to the ability to complete particular functions or tasks, to the authorisation to edit certain elements or to modify (for example) an entire Register.

      General permissions


      Here are the categories of general permissions that may be assigned to Groups and their Users:

      NOTE: You will find this list of permissions on the Groups Settings.

      Permissions (Groups)

      • ADMIN

      Configuration: turns on the button called Configuration in Settings:  can change structural things like 2FA and logos.
      User Group Admin      : can change the Users assigned to a Group, as well as control the permissions (listed in this Glossary) that are granted to each Group.

      User Management: can invite new users, as well as remove users.

      Create New Client: can set up separate environment within Leo for a specific client to access and use.

      Archive Data: can download reports, registers and other data in bulk ­- typically for archive purposes.

      Firm Profile: can enter basic information about your organisation. Currently, the information is related primarily to SM&CR categorisation.

      • COMPLIANCE RISK ASSESSMENT 

      Edit Compliance Risk Assessment: can make edits to the Compliance Risk Assessment (CRA). For example: changing how frequently each chapter will be assessed.

      Publish Compliance Risk Assessment: can elevate a draft CRA to Published status, after which the Compliance Monitoring reports will follow the new schedule of monitoring.

      • CALENDAR

      Task Admin: can see and edit all Users’ tasks in the Calendar; not just their own.

      Show Calendar: can see the Calendar icon in the left-hand icon bar.

      • DOCUMENT EXCHANGE

      Document Exchange Admin: has full control of which User is assigned to each Document Exchange Request, as well as permission to see, edit or delete any Document Exchange. Request.

      Show Document Exchange: will show the Document Exchange button on the home page.

      • MODULES

      Module Admin: can create and remove Modules, change a Group’s permissions within each Module, and edit permissions for the Report Templates that are available in each Module. 

      • PA DEALING

      PA Dealing Admin: can control and update the types of restricted dealing lists (white/grey/blacklists) and the instruments that are in those lists, as well as the Covered Accounts that Users can reference when they make a PA Dealing request (all guided by the firm’s PA Dealing policy)

      PA Dealing Approver: can approve or reject other users’ PA Dealing requests. Users cannot approve or reject their own requests

      Show PA Dealing: can view PA Dealing requests, approvals and rejections

      • REGISTERS

      Register Admin: can create or delete registers, edit a register’s structure (for example, add or remove columns), configure rules for a register and adjust the permissions that each group. has for a register

      Create Register: can create a new register.

      Show Registers: can view a list of registers from an icon in the sidebar.

      • REPORTS

      Template Admin: can create and edit Report Templates.

      Submit for Review: can submit a Report to the next stage of the process (either for review, or straight to publication, depending upon the Report Template’s configuration).

      Publish Report: can publish (therefore edit and finalise) a report.

      Show Executive Summary: can access the Executive Summary chapter (if there is one) for any reports that you have permission to view. You will be able to read the Executive Summary in two formats: Report Editor and the resulting PDF version.

      Chapter Assignment: can assign specific report chapters to Users.

      Report Owner Rights: allows you to name yourself - or to be named by someone else - as the designated Assignee of a report.

      Report Reviewer Rights: allows you to name yourself - or to be named by someone else - as the designated Reviewer of a report.

      Duplicate Reports: can duplicate a report (needs hyperlink to a Report Duplication page).

      Display Exception Reports: can view any problems that have been logged during Report Duplication.

      Content-specific permissions

      Here are the permissions that are assigned and limited to a particular Module/Report or Register - and elements within them:

      • Report Content Permissions (these permissions are limited to a specific Report)

      Create Report: can create a new Report for a specific module

      Assigned Reports – Read: can view active reports assigned to them

      Assigned Reports – Edit: can edit active reports assigned to them

      Active Reports – Read: can view any active report

      Active Reports – Edit: can edit any active report

      Active Reports Assigned Chapters – Read: can view a chapter assigned to them

      Active Reports Assigned Chapters – Edit: can edit a chapter assigned to them

      Assigned Report Documents – Read: can view/download documents uploaded into a report assigned to them

      Assigned Report Documents – Upload: can upload documents into a report assigned to them

      Report Documents – Read: can view/download documents uploaded into any report they can see

      Report Documents – Upload: can upload documents into any report they can see

      Published Assigned Reports – Read: can view a report they were assigned to after it is published

      Published Reports – Read: can view any report after it is published

      Documents – Read: can view/download documents in the Uploaded Documents tab

      Documents – Upload: can upload documents into the Uploaded Documents tab

      • Register Content Permissions (these permissions are limited to a specific register)

      Create: can create new records

      Read Assigned: can view records assigned to them

      Read All: can view any record

      Modify Assigned: can edit records assigned to them

      Modify All: can edit any record

      • Register Column Content Permissions (these permissions are limited to specific columns within a specific register)

      Read/Create: for visible records, can see the column and can enter a value into the column for new records

      Modify: for visible records, can do the above and also edit the column values