Workspace access is split into three levels: owner, admin, and member

Permission groups define what each admin can do by bundling fine-grained permissions. Some areas also depend on your subscription plan (for example Team-only features such as teams and custom permission groups).

How access works

Owner — The person who created the workspace (or was transferred ownership). Owners have full administrative access. Certain protections apply: others cannot change the owner's permission group or deactivate the owner account.

Admin — Anyone assigned to a permission group. What they can open in Admin settings depends on which permissions that group includes. Admins are not automatically "full" admins unless their group includes the Global permission (sometimes labelled Super Admin in the product).

Member — A normal workspace user with no admin permission group. They use PraisePal (recognitions, rewards, their profile) but do not see the admin console for your workspace.

When you build or edit a permission group, you tick individual permissions (such as View users, Edit users, Billing, or any of the reward-related permissions). The product groups some permissions visually, but each one is granted independently.

What admins can access

The sections below follow the admin sidebar. Plan notes call out Starter and Team where the product gates a route or field.

Workspace settings

Workspace → General requires the Global permission. This area controls:

• Workspace name and logo

• Invite settings (self-signup domains, invite link)

• Recognition display options (e.g. feed visibility, leaderboard)

• Other workspace-wide preferences

Workspace → Integrations requires Global and is available from the Starter plan upward. This area controls Slack, webhooks, and other third-party connections.

Users & permissions

The Users page is available if you have any of: View users, Create users, Edit users, Ad hoc points, or Global. You do not need View users first—each of those permissions can qualify you for the page on its own.

Within Users, what someone can do depends on their permissions:

• View users — Search, filter, open user details, and export (where export is enabled for your role).

• Create users — Invite people (including bulk invite via CSV, where available).

• Edit users — Update profile fields (name, dates, location, recognition budget), status (active or deactivated), and permission group, subject to the rules in Rules and restrictions. On Free and Starter plans, assigning permission groups and teams on user records may be limited or locked; from Team upward you can assign teams and permission groups when you have Edit users or Global.

• Ad hoc points — Add or subtract points for individuals or in bulk (often together with Edit users or Global for certain bulk actions).

Teams and Permission groups (the sub-areas under Users & permissions, not the fields on a single user) require Global and the Team plan or above.

Activity (activity log under Users & permissions) is available with Global or View users.

Programs

The Programs section in the admin sidebar groups three areas: Recognition, Celebrations, and Incentives. All require the Global permission.

Recognition is a tabbed page with three tabs:

• Rules — Point caps, tier limits, and other guardrails for peer-to-peer recognition.

• Company values — Define values that can be attached to recognitions. Requires the Team plan or above.

• Budgets — Create and manage budgets that determine how many points users can give.

Celebrations — Configure birthday and work-anniversary bots. Requires the Team plan or above.

Incentives — Create time-bound programs (challenges, campaigns) that award points for specific behaviors or milestones.

Rewards & redemptions

These areas are controlled by reward and redemption permissions. You need at least one relevant permission—or Global—to access the corresponding page.

Within Rewards & redemptions, what someone can do depends on their permissions:

• View rewards — See the gift card catalog and custom rewards list; view reward settings.

• Create rewards — Add new custom rewards.

• Update rewards — Edit, enable, disable, or archive rewards; adjust gift card settings.

• View redemptions — See redemption requests and history.

• Update redemptions — Approve, reject, fulfill, or refund redemptions.

Gift cards admin is additionally available from the Starter plan upward.

Billing

Billing requires Billing or Global. This area lets you:

• Subscribe or change your plan

• Update payment method and billing details

• Download invoices and receipts

• Cancel the subscription

Permission groups

Permission groups let you give the same bundle of permissions to several people. Create a group, select the permissions it should include, then assign users to that group from the Users page (Permission group on their profile).

On Free and Starter plans, workspaces typically rely on a single built-in Global system group that includes all permissions; that group cannot be edited or deleted. From Team upward you can create additional groups and tailor which permissions each one has.

Workspace owners are treated as having full access; they are not dependent on a custom group for owner-level access.

Click Create new on the permission groups page to add a group (when your plan supports it), choose a name, and tick the permissions to include. Combine permissions in whatever way matches how you govern access.

Rules and restrictions

• The workspace owner's permission group cannot be removed or reassigned by someone else.

• You cannot change your own permission group (prevents self-promotion or self-demotion).

• You cannot deactivate the owner or yourself through user status.

• System permission groups (including the built-in Global group on lower tiers) cannot be edited or deleted.

Related articles

• How to Invite Users and Manage Access

• How PraisePal Works: Points, Budgets, and Credits