# Roles & Permissions

### Default Roles

Default built-in roles (`owner`, `administrator`, `member`) are managed by Modelmetry and their permissions cannot be changed by users. Only Modelmetry will make changes when required – always informing team administrators and owners by email with enough notice.

#### Owner

The owner role is automatically assigned to the creator of a team. It essentially has all permissions and privileges within that team and their role cannot be changed by other team members.

#### Administrator

An administrator has all roles except billing within the team.

#### Member

A member has the roles needed to use the platform without being allowed critical permissions.

### Custom Roles

If you are on a suitable billing plan, you will be able to create, update, and assign custom roles which you can completely customise to your business' needs.

{% embed url="<https://youtu.be/0XUtNBwbXHw>" %}

### Permissions

<table><thead><tr><th width="250">Permission</th><th>Description</th></tr></thead><tbody><tr><td>analytics.read</td><td>Read and update the team's dashboard.</td></tr><tr><td>apikeys.manage</td><td>Manage API keys.</td></tr><tr><td>apikeys.read</td><td>View API keys.</td></tr><tr><td>automations.create</td><td>Create automations.</td></tr><tr><td>automations.delete</td><td>Delete automations.</td></tr><tr><td>automations.read</td><td>Read automations.</td></tr><tr><td>automations.update</td><td>Update automations.</td></tr><tr><td>billing.manage</td><td>Manage the team's billing.</td></tr><tr><td>billing.usage.read</td><td>View the team's usage.</td></tr><tr><td>checks.read</td><td>Read checks.</td></tr><tr><td>guardrails.create</td><td>Create guardrails.</td></tr><tr><td>guardrails.delete</td><td>Delete guardrails.</td></tr><tr><td>guardrails.read</td><td>Search and view guardrails.</td></tr><tr><td>guardrails.update</td><td>Update guardrails.</td></tr><tr><td>instances.create</td><td>Create instances of evaluators.</td></tr><tr><td>instances.delete</td><td>Delete instances of evaluators.</td></tr><tr><td>instances.read</td><td>View instances of evaluators.</td></tr><tr><td>instances.update</td><td>Update instances of evaluators.</td></tr><tr><td>members.manage</td><td>Invite and withdraw invitations. Revoke memberships.</td></tr><tr><td>members.read</td><td>View memberships.</td></tr><tr><td>roles.manage</td><td>Create custom roles, and update assigned permissions.</td></tr><tr><td>roles.read</td><td>View roles.</td></tr><tr><td>secrets.manage</td><td>Create, update, and delete secrets.</td></tr><tr><td>secrets.read</td><td>View secrets.</td></tr></tbody></table>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.modelmetry.com/platform/team/roles-and-permissions.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.