Users and permissions

Last updated on 14.07.2026

Everyone who works with Komma has their own user account. We have deliberately chosen not to use shared logins – only with personal accounts can we keep track of who has made which changes.

Creating a user

Administrators create new users in the Admin → Users section. All that’s required is the person’s email address – they then sign up themselves via the Magic Link; no one needs to assign or send a password.

Permissions: Who can see what?

Not every team member needs access to everything. Komma manages this via permissions:

  • Finances are only visible to those with finance permissions.
  • Administrative functions (users, security, settings) are reserved for administrators and those with explicit authorisation.
  • Other sensitive areas can also be selectively granted access to.

Areas without the appropriate permissions do not appear in the navigation at all – the interface remains as streamlined for each person as their remit.

Recommended practice

  • As few permissions as possible, as many as necessary. Permissions can be extended at any time.
  • Deactivate access promptly when someone leaves the organisation.
  • At least two administrators per organisation – in case one person is unavailable.

Traceability

All important actions are logged in the audit log. This protects not only the organisation but also every team member: it is always possible to clarify exactly what happened.