Access and Permissions
Overview
Access to the Merchant Portal is controlled through a combination of user roles, entity assignments, and the selected level in the account tree.
This model ensures that users can only access the data and features relevant to their responsibilities within the organization.
Account Tree Impact
All actions in the Merchant Portal depend on the selected level in the account tree. Changing the selected entity updates the data, available features, and scope of operations.
This applies consistently across all portal features, including user management, transactions, reporting, and configuration.
User Roles
User roles define the level of access and the actions a user can perform in the portal.
Common roles include:
- Administrator – Full access to all portal features, including configuration and sensitive operations.
- Operator – Access to operational features, with restrictions depending on assigned permissions.
- Specialized roles – Such as Call Center, Analysis, or Accounting roles, tailored to specific functions.
The availability of features depends on the assigned role and may differ between users.
Assignments
Users must be assigned to one or more entities in order to access data in the portal.
Assignments define where a user can operate within the account structure. Without an assignment, a user cannot access any entity-specific data.
Assignments can be configured during user creation or updated later by administrators.
Access Scope
Assigning a user to an entity grants access to that entity and all underlying entities and channels in the hierarchy.
This hierarchical model ensures that access is automatically inherited, reducing the need for repeated configuration.
As a result, assignments directly define the full scope of data a user can access.
Multi-Entity Access
Users can be assigned to multiple entities across the account structure.
If a user has access to multiple entities, a selection screen is displayed after login, allowing the user to choose which entity to access.
This enables flexible access across divisions, merchants, or channels, while maintaining clear separation of data.
User State and Access
A user’s state determines whether they can access the portal:
- New – The user must complete initial setup before accessing the portal.
- Active – The user can log in and use the portal.
- Locked – The user cannot log in until unlocked by an administrator.
User authentication includes password setup and multi-factor authentication (MFA). For more information, see Multi-Factor Authentication (MFA).
Administrative Actions
Certain actions require administrator permissions to ensure security and control.
- Creating and assigning users
- Modifying roles and assignments
- Unlocking user accounts
- Removing users
These restrictions ensure that critical operations are performed only by authorized users.
Summary
Access to the Merchant Portal is governed by a structured model based on roles, assignments, and account hierarchy.
By combining these elements, the system ensures that users have appropriate access to data and features while maintaining security and operational control.