BioEcko Docs
AdministrationRoles

Custom Roles

When pre-built roles don't match your organisation's needs, create custom roles with exactly the permissions required. Custom roles are useful for specialised...

2026-02-01 · 4 min

Manual area

Admin

Coverage

5 sections

Operator notes

2 implementation notes

Overview

When pre-built roles don't match your organisation's needs, create custom roles with exactly the permissions required. Custom roles are useful for specialised positions like a Billing Supervisor who can approve refunds, or a Senior Nurse who can enter discharge summaries.

Creating a Custom Role

  1. Navigate to Admin > Roles > Create Custom Role.
  2. Enter a role name and description.
  3. Optionally, start from a template: Clone an existing pre-built role and modify it.
  4. The permission editor displays all modules as expandable sections.
  5. For each module, check the specific permissions you want to grant (View, Create, Edit, Delete, Approve, Export).
  6. Set data scope: Own records only, Department records, Branch records, or All records.
  7. Save the role. It immediately appears in the role assignment dropdown for users.

Common Custom Role Examples

Billing Supervisor: Clone Billing Executive + add Refund and Void permissions + add Financial Reports export.

Senior Nurse: Clone Nurse + add Discharge Summary create + add Lab Order create.

Junior Doctor: Clone Doctor + remove Prescription sign-off (requires co-signature from senior).

Medical Records Officer: Patient View + EMR View + Export + Print. No create or edit permissions.

Quality Manager: Read-only access to all clinical modules + Audit Logs view + all Reports export.

Pharmacy Manager: Clone Pharmacist + add Purchase Order create/approve + Vendor management + Stock audit.

Testing a Custom Role

Before assigning a custom role to staff:

  1. Create a test user account.
  2. Assign only the custom role to this test user.
  3. Log in as the test user (use an incognito window).
  4. Navigate through each module to verify access is correct.
  5. Try performing actions that should be allowed and actions that should be blocked.
  6. Adjust permissions as needed and re-test.
  7. Once satisfied, assign the role to actual staff members.

Role Audit

Review role assignments periodically:

  • Admin > Roles > Role Audit shows a matrix of all users and their assigned roles.
  • The Unused Permissions Report identifies permissions granted but never exercised (potential over-provisioning).
  • The Access Change Log tracks all role assignments, modifications, and revocations.
  • Conduct quarterly role reviews as part of your information security practice.

Notes

Tip

Start by cloning the closest pre-built role and then adjusting permissions. This is much faster than building a role from scratch.

Warning

Always test custom roles with a test user before assigning them to real staff. A misconfigured role could expose sensitive patient data or block critical workflows.

Roles & Access Control

Role-Based Access Control (RBAC) ensures every user sees only what they need. Bio Ecko ships with pre-built roles for common healthcare positions and lets you...

Permission Reference

Permissions are the granular access controls that make up a role. Each permission governs a specific action within a specific module. This reference lists all...

Vendor Management

The Vendor Management module maintains a centralized registry of all suppliers, distributors, and service providers. Each vendor record includes contact...

Audit Logs

Audit Logs provide a tamper-proof record of every significant action performed in Bio Ecko. They are essential for regulatory compliance (NABH, Clinical...

Pharmacy

The Pharmacy module manages medicine dispensing, inventory, and point-of-sale for clinics with an in-house pharmacy. It connects directly to prescriptions ...

Billing

The Billing module supports billing review, charge capture, and financial workflows. For [Solo Doctor & Small Clinic](/solo-doctor-small-clinic), the safe...

Permission Reference

Permissions are the granular access controls that make up a role. Each permission governs a specific action within a specific module. This reference lists all...

System Settings

System Settings contains facility-wide configuration options that affect all users and modules. Changes here are organisation-level and require Super Admin...

On this page

OverviewCreating a Custom RoleCommon Custom Role ExamplesTesting a Custom RoleRole AuditNotesRelated topics