Protect global roles and permissions

The following tables describe the global roles and global permissions that are specific to Collibra Protect.

Global role	Description
Protect Reader	A user who can view Protect with read-only access to data protection standards and data access rules.
Protect Author	A user who can: Create standards and rules. Modify or delete only the standards and rules that they created. View imported policies. View groups. Generate audit logs as an individual contributor.
Protect Admin	A user who has the same permissions as a Protect Author. In addition, this user can modify or delete all standards and rules, and access additional APIs.

Global role

Description

Protect Reader

A user who can view Protect with read-only access to data protection standards and data access rules.

Protect Author

A user who can:

Create standards and rules.
Modify or delete only the standards and rules that they created.
View imported policies.
View groups.
Generate audit logs as an individual contributor.

Protect Admin

A user who has the same permissions as a Protect Author. In addition, this user can modify or delete all standards and rules, and access additional APIs.

Note The Protect Manager global role is intended only for the Protect system user.

Global permission	Description
Protect > Edit	Allows a user to: Create standards and rules. Modify only the standards and rules that they created. Delete only the standards and rules that they created.
Protect > Administration	Allows a user to: Create standards and rules. Modify all standards and rules. Delete all standards and rules.

Global permission

Description

Protect > Edit

Allows a user to:

Create standards and rules.
Modify only the standards and rules that they created.
Delete only the standards and rules that they created.

Protect > Administration

Allows a user to:

Create standards and rules.
Modify all standards and rules.
Delete all standards and rules.