User Management & Security lets you control who has access to your Afri Invoice account by assigning roles, setting permissions, and limiting what each team member can see or do. It protects your business with secure authentication, activity tracking, and strict access controls that always keep your financial data safe.
Role-Based Access Control
Four built-in roles cover the team structure of most growing businesses. Assign the right role to each user and let the platform enforce the boundaries.
| Role | Permissions |
|---|---|
|
Primary
Full access
|
Full platform control: billing, user management, all business settings, account deletion. Reserved for the account owner. |
|
Admin
High access
|
Create and manage invoices, customers, and products. Access most platform settings. Cannot manage billing or delete the account. |
|
Accountant
Finance only
|
Read and edit financial data, generate reports, reconcile accounts. Cannot create or delete invoices. |
|
Assistant
Operational
|
Day-to-day tasks: create invoices, update customer records. Restricted to operational functions only. |
Security Features
Certifications and Compliance
Frequently Asked Questions
Can I remove a team member's access immediately?
Yes. The Primary account holder can revoke any user's access instantly from the user management settings. Revoked users lose access immediately and cannot recover it without a new invitation.
Is my financial data visible to Afri Invoice staff?
Staff access to customer data is governed by strict internal access control policies aligned with ISO/IEC 27001:2022. Access is restricted to authorised personnel only and every access event is logged for audit purposes.
What happens to user access if I downgrade my plan?
If a plan downgrade reduces the maximum number of users, you will be prompted to deactivate excess user accounts before the downgrade is processed.
No credit card required. Set up in under 3 minutes.