Learn how to create custom roles, add team members, assign permissions, and control access to your IteraPay merchant account.
IteraPay’s team management system lets you grant colleagues access to your merchant account with precisely the permissions they need. You define roles that group a set of permissions, then assign those roles to members. A finance manager, for example, might have access to withdrawals and collection, while a developer only needs access to invoice creation and webhooks. This guide covers how to set up roles, add members, and manage access over time.
Every member of your merchant account is assigned a role. A role is a named collection of permissions — granular access controls that determine which API actions and dashboard features a member can use.
Permissions are defined and enforced server-side. Even if a member knows an API endpoint, they cannot use it without the corresponding permission in their role.
Concept
Description
Role
A named template that groups one or more permissions (e.g., “Finance”, “Developer”)
Permission
A specific capability, such as creating invoices or initiating withdrawals
Member
A user added to the merchant account with an assigned role
Remove a member to revoke their access to your merchant account. This does not delete their IteraPay user account — it only removes them from your merchant.
Assign each member only the permissions they need for their specific job function. Avoid creating a single “admin” role for all team members unless they genuinely need full access.
Audit your members list regularly
Remove members who no longer work with your team promptly. Dormant accounts with active permissions are a security risk.
Use descriptive role names
Name roles after job functions (e.g., “Finance”, “Developer”, “Support”) rather than individual people. Roles should be reusable as your team grows.