Workspaces & Roles
WeCheck is built for collaboration, scaling from individual investigators to global security teams. Our Workspace Model ensures you can manage permissions and budgets across different departments.
The Workspace Concept
A Workspace is an isolated environment for managing scans and reports.
- Isolated Data: Scans run in a particular workspace are only accessible to members of that workspace.
- Budgeting: Credits are pooled at the Organization level but can be allocated to specific Workspaces.
Roles & Permissions
WeCheck uses a Role-Based Access Control (RBAC) model to ensure data security and operational integrity:
| Role | Capabilities | Best For... |
|---|---|---|
| Org Admin | Manage all workspaces, billing, and member invites. | IT Managers, CFOs. |
| Workspace Admin | Manage workspace-level settings, members, and API keys. | Investigative Leads. |
| Analyst / Member | Create and view scans. Manage reports. | Recruiters, Researchers. |
| Viewer | Read reports only. Cannot create new scans. | Stakeholders, Audit logs. |
Security Best Practices
To keep your investigations secure, we recommend the following:
- Principle of Least Privilege: Assign the Viewer role to anyone who only needs to read results.
- Enforced SSO: Enterprise customers should enable Single Sign-On.
- Invite-Only: Members must be explicitly invited via email to join a workspace.
Managing Credits across Workspaces
If you are an Org Admin, you can set Credit Thresholds per workspace. This prevents a single high-volume project from consuming the entire organization's budget without notification.