With the Enterprise plan in InVision, you have a lot of control over how your team can access your prototypes. We allow you to control access by assigning roles to your users, and there are additional permissions you can use to more finely control what each role can do.
Currently, the following roles are available in Enterprise:
- Admins: Full account access
- Manager: Can invite members, create teams, and view/edit/delete all prototypes/boards
- Contributor: Can create, edit, and delete prototypes/boards on which they are members
- Reviewer: Can be assigned prototypes/boards to review
We consider the Admin, Manager, and Contributor roles to be "Core" roles since they can modify associated prototypes and boards while the Reviewer role cannot make changes to prototypes or boards.
You can have multiple Admins and Managers managing various teams within your organization.
Note: Anyone with edit access to a prototype or board - Contributor, Manager, or Administrator - is able to delete a prototype or board, as all boards and prototypes are owned by the Enterprise. All roles within the Enterprise have access to Inspect mode for the prototypes they are part of.
In addition to the default permissions available to each role, you can also modify permissions for each role to fine-tune how those roles work in your organization. You can access these additional permissions by clicking People in the top menu, clicking the ••• link, and clicking Member Permissions as shown below:
In there, you'll see the following list of permissions.
Session (Enterprise Only)
- Enable session timeouts: If enabled, Enterprise members will be signed out of the Enterprise account after inactivity based on the time you set. - Time before a user is logged out for inactivity: This is set to 1 week by default. Choose from the dropdown menu to set your desired time.
- Require authentication for share links: If enabled, your share links cannot be anonymously viewed. Instead, anyone who views the share link will need to be a member of your Enterprise organization and will need to login to view the share link. If enabled, this applies globally and cannot be overridden on individual share links.
- Allow user testing passwords: If Require authentication for share links is on, this setting allows a tester to bypass the login and access a user testing link with a password.
- Can invite members to the company: If enabled, Managers can add additional Managers, Contributors, and Reviewers to your Enterprise organization but cannot add Admins. If this is disabled, only Admins can invite new users to join the Enterprise organization.
- Enable dashboard: If this is enabled, Contributors can see the "Dashboard" option in the top menu bar and can see an organization-wide overview of prototype and user activity.
- Can preview and join all company prototypes: If given this option, Contributors can see every prototype in the account and can join it. If this is disabled, a member of the prototype would need to invite them to collaborate on the prototype before they would be able to see it. Once the user has joined the prototype they can edit and delete it.
- Can view all company members: If off, Contributors will not be able to see other members of the Enterprise organization when adding members to a project, when in the People page, or when viewing the member filter on the prototypes page and in the activity feed unless they are on the same team or are already collaborating on a prototype with that user. This is ideal for organizations (e.g. agencies) who might not want Contributors on one prototype being able to view the individuals associated with another unrelated prototype.
- Can preview and join all company prototypes: This behaves the same way as the Contributor option above.
- Can view and create private comments and dev notes: If disabled, a Reviewer will not be able to view existing private comments or dev notes nor will they be able to create new ones. This is useful for internal discussions (e.g. discussions with devs about implementation) that may not be relevant to the Reviewer.
- Can view prototype assets: If this is enabled, the Reviewer will be able to see the assets tab and can view assets in addition to the screens in a prototype.
- Can view activity: When disabled, this prevents a reviewer from seeing the organization-wide activity page or the activity tab within a prototype even for prototypes on which they're members. This permission is meant for organizations that want to be able to perform work in InVision without making a detailed log of that activity available to their clients.
If an Enterprise user clicks a share link for a prototype they're not authorized to view, they can request access.