Protect global roles and permissions

The following tables describe the global roles and global permissions that are specific to Collibra Protect.

Global role Description
Protect Reader A user who can view Protect with read-only access to data protection standards and data access rules.
Protect Author

A user who can:

  • Create standards and rules.
  • Modify or delete only the standards and rules that they created.
  • View imported policies.
  • View groups.
  • Generate audit logs as an individual contributor.
Protect Admin

A user who has the same permissions as a Protect Author. In addition, this user can modify or delete the standards and rules created by others, and access additional APIs.

Note The Protect Manager global role is intended only for the Protect system user.

Global permission Description

Product Rights > Protect

The Read-only license is required for this permission. The permission allows a user to access Collibra Protect.

All Protect global roles and the Edge site global role have this permission.
Protect > Edit

The Standard license is required for this permission. The permission allows a user to:

  • Create standards and rules.
  • Modify only the standards and rules that they created.
  • Delete only the standards and rules that they created.
Protect > Administration

The Standard license is required for this permission. The permission allows a user to:

  • Create standards and rules.
  • Modify all standards and rules.
  • Delete all standards and rules.