Skip to main content
PlaneConnection uses role-based access control (RBAC) to govern what users can see and do within the platform. Each user is assigned exactly one role within a tenant. Roles determine access to modules, features, and actions. User roles are distinct from crew roles. A user role governs platform access; a crew role defines an individual’s function on a specific flight.

Role Summary

RoleDatabase ValueScopeDescription
Platform Adminplatform_adminAll tenantsFull system access across all tenants. Reserved for PlaneConnection staff.
AdminadminSingle tenantFull access within the tenant. Can manage users, settings, and all modules.
Safety Managersafety_managerSingle tenantFull access to the SMS module. Limited access to operations.
PilotpilotSingle tenantPIC portal access. Can submit reports and view assigned trips.
CrewcrewSingle tenantLimited access to assigned trips and safety reporting.
ViewerviewerSingle tenantRead-only access across permitted modules.

Detailed Role Definitions

Platform Admin

The platform admin role is reserved for PlaneConnection personnel who require access across all tenants for support, configuration, and platform management. Platform admins can impersonate any user within any tenant for troubleshooting purposes. Access scope: All tenants, all modules, all actions. Assignment: Managed by PlaneConnection. Cannot be assigned by tenant administrators.

Admin

The admin role provides full access within a single tenant. Admins can manage users, configure settings, and access all modules (SMS, operations, compliance). Every tenant must have at least one admin. The admin role is typically assigned to the accountable executive or operations manager. Access scope: Single tenant, all modules, all actions within that tenant. Key capabilities:
  • Manage users and role assignments.
  • Configure tenant settings and preferences.
  • Access all SMS, operations, and compliance features.
  • Manage integrations and API keys.
  • View audit logs.
  • Generate compliance reports.

Safety Manager

The safety manager role provides full access to the SMS module and limited access to operations data. This role is intended for the designated safety management personnel required by 14 CFR 5.25. Access scope: Single tenant. Full SMS access; read-only operations access. Key capabilities:
  • Manage all safety reports, investigations, and CPAs.
  • Configure risk assessment criteria.
  • Manage compliance checklists and audits.
  • Generate Part 5 compliance reports.
  • View operations data (trips, aircraft, crew) in read-only mode.
  • Manage safety training records.
  • Configure safety reporting forms and workflows.

Pilot

The pilot role provides access to the PIC portal, safety reporting, and assigned trip information. This role is intended for flight crew who need to submit reports, review schedules, and manage their flight records. Access scope: Single tenant. PIC portal; safety reporting; assigned trips and aircraft. Key capabilities:
  • Submit safety reports (all types).
  • View and manage assigned trips.
  • Record flight times and duty periods.
  • View aircraft records for assigned aircraft.
  • View and acknowledge assigned CPAs.
  • Access personal training records.
  • View safety bulletins and communications.

Crew

The crew role provides limited access for non-pilot crew members (flight attendants, ground crew) who need to view their assignments and submit safety reports. Access scope: Single tenant. Safety reporting; assigned trips only. Key capabilities:
  • Submit safety reports (all types).
  • View assigned trips and schedules.
  • Record duty periods.
  • View safety bulletins and communications.
  • Access personal training records.

Viewer

The viewer role provides read-only access to permitted modules. Viewers cannot create, edit, or delete any records. This role is intended for stakeholders who need visibility into safety or operations data without the ability to modify it — for example, board members, insurance auditors, or regulatory inspectors during an audit. Access scope: Single tenant. Read-only across permitted modules. Key capabilities:
  • View safety reports, investigations, and CPAs.
  • View compliance dashboards and reports.
  • View operations data (trips, aircraft, crew).
  • Export reports and data (where permitted).

Role Hierarchy

Roles are not strictly hierarchical, but the following describes the general relationship of access breadth: 
platform_admin > admin > safety_manager > pilot > crew > viewer
A higher role includes all permissions of lower roles within its access scope, with the exception that safety_manager has SMS-specific permissions that admin also holds (admin is a superset).

Role Assignment Rules

  • Each user has exactly one role per tenant.
  • A user may belong to multiple tenants with different roles in each.
  • Only admin and platform_admin users can assign or change roles.
  • The last admin in a tenant cannot be downgraded or removed.
  • platform_admin can only be assigned by PlaneConnection staff.