ALLINONE ships with a three-role RBAC: super_admin, admin, manager. Membership is project-scoped - a user can be admin on project A and manager on project B in the same workspace. Every action is permission-checked at the row level (view, edit, suspend, delete) and logged to the workspace audit log with actor, target, IP and user-agent.
super_admin owns the workspace, admin runs a project end-to-end, manager works inside it. No 12-permission matrix to memorise.
A teammate can be admin on one project and manager on another. The topbar switcher respects the role per project - the UI surfaces only what the role allows.
Login, invite, role change, suspend, delete, integration connect, AI draft. All in the workspace audit log with actor, target, IP and user-agent. Immutable, exportable.
Three roles ship out of the box: super_admin owns the workspace and billing, admin runs a project end-to-end, manager works inside a project under an admin. Membership is per-project, so the same user can hold different roles on different projects without leaving the workspace.
Every workspace action: login, invite, role change, member suspend, member delete, integration connect or disconnect, AI draft, campaign send, automation deploy, invoice issue. Each entry carries actor, target, IP, user-agent and timestamp. The log is immutable.
Yes. Suspend pauses login and outbound action without deleting the audit trail or the work the member produced. Restore reactivates the account; delete removes it for good (still leaving the audit trail intact).
Yes. Every row exposes view, edit, suspend and delete checks driven by the user role on the current project. The UI hides actions a role cannot perform, and the API rejects them server-side. The audit log records denied attempts too.
No credit card. Free plan covers core CRM, segments and the email builder. Pro unlocks AI assist, invoicing and the full provider stack.