Roles and Permissions
Karomia uses role-based access control to manage what each team member can see and do within the platform. In addition to platform-wide roles, Karomia provides dedicated CSRD report roles to structure the reporting workflow.
Platform roles
| Role | Description |
|---|---|
| Administrator | Full access to all features, settings, and member management |
| Editor | Can create and edit assessments, reports, and emissions data |
| Viewer | Read-only access to assessments, reports, and dashboards |
Administrator
Administrators have full control over the organization workspace:
- Create, edit, and delete assessments, reports, and emissions data.
- Manage team members (invite, change roles, remove).
- Access organization settings and configuration.
- Manage physical locations and entities.
- Approve data access requests.
- Access the admin portal.
Editor
Editors can work on content but cannot manage the organization:
- Create and edit assessments.
- Write and edit reports.
- Enter and modify emissions data.
- Upload and manage documents.
- Distribute and manage surveys.
- View dashboards and results.
Viewer
Viewers have read-only access:
- View assessments and their results.
- Read reports.
- Access dashboards and visualizations.
- Download exported reports.
CSRD report roles
When working on CSRD reports, team members are assigned one of three report-specific roles. These roles define responsibilities within the reporting workflow and operate alongside platform roles.
| Role | Description |
|---|---|
| Contributor | Uploads documents, provides source data, and flags missing information |
| Reviewer | Reviews AI-generated output, completes missing elements, and edits answers |
| Validator | Performs final review, validates data points, and ensures audit-readiness |
Contributor
Contributors are responsible for supplying the raw data and documentation that feed into the report:
- Upload supporting documents (invoices, policies, certifications, etc.).
- Provide quantitative and qualitative data for assigned topics.
- Flag missing information or data gaps via comments and @mentions.
Reviewer
Reviewers process the data provided by Contributors and shape the report content:
- Review AI-generated answers based on uploaded documents.
- Complete missing elements and fill gaps in the generated output.
- Edit and refine answers for accuracy and clarity.
- Mark data points as complete when they are ready for validation.
Validator
Validators are the final checkpoint before a data point is considered audit-ready:
- Perform a final review of completed data points.
- Validate data points, which locks them to prevent further modification.
- Ensure that each validated data point meets audit-readiness standards.
- Return data points to Reviewers if corrections are needed.
Reporting workflow
The CSRD report roles follow a sequential workflow:
Contributors → Reviewers → Validators
Each data point moves through this pipeline. Contributors provide the source material, Reviewers process and complete it, and Validators give final approval. This structure ensures clear accountability and a reliable audit trail.
Changing roles
Only administrators can change member roles:
- Navigate to Members.
- Find the member whose role you want to change.
- Select the new role from the dropdown.
- Confirm the change.
Entity-level access
If your organization manages multiple entities, permissions can be scoped per entity. A member may have different roles across different entities.
Follow the principle of least privilege: give team members the minimum permissions they need to do their work. You can always increase permissions later.
Next steps
- Real-time editing — Collaborate on reports in real time.