Permission Reference

Permissions are the granular access controls that make up a role. Each permission governs a specific action within a specific module. This reference lists all...

2026-02-01 · 5 min

Manual area

Admin

Coverage

6 sections

Operator notes

2 implementation notes

Overview

Permissions are the granular access controls that make up a role. Each permission governs a specific action within a specific module. This reference lists all available permissions to help you design effective custom roles.

Permission Structure

Each permission follows the format: Module > Resource > Action.

For example:

Clinical > Patient > View: Can see patient records.
Clinical > Prescription > Create: Can write prescriptions.
Billing > Invoice > Delete: Can void invoices.
Admin > User > Edit: Can modify user accounts.

Actions available per resource: View, Create, Edit, Delete, Approve, Export, Print.

Clinical Permissions

Patient: View, Create, Edit, Delete, Export, Merge. Appointment: View, Create, Edit, Cancel, Reschedule. OPD Visit: View, Create, Edit, Sign-off. Prescription: View, Create, Edit, Print. Diagnosis: View, Create, Edit. Lab Order: View, Create, Cancel. Lab Result: View, Enter, Verify, Amend. Radiology Order: View, Create, Cancel. Radiology Report: View, Create, Verify. IPD Admission: View, Create, Edit, Discharge. Nursing: View Vitals, Record Vitals, Medication Administration, Nursing Notes. Consent Forms: View, Create, Witness. EMR: View, Create, Edit (includes clinical notes, history, examination).

Financial Permissions

Invoice: View, Create, Edit, Delete/Void, Print. Payment: View, Collect, Refund, Reconcile. Insurance Claim: View, Create, Submit, Follow-up. Financial Reports: View, Export. General Ledger: View, Post, Reverse. Payroll: View, Process, Approve.

Operational Permissions

Inventory: View, Adjust, Transfer, Write-off. Purchase Order: View, Create, Approve, Cancel. GRN: View, Create, Inspect. Vendor: View, Create, Edit. Pharmacy Dispense: View, Dispense, Return. Pharmacy Stock: View, Adjust, Transfer.

Administrative Permissions

User Management: View, Create, Edit, Deactivate, Reset Password. Role Management: View, Create, Edit, Assign. Organization Settings: View, Edit. Branch Management: View, Create, Edit. Department Management: View, Create, Edit. Audit Logs: View, Export. System Settings: View, Edit (includes integrations, templates, workflows).

Notes

Warning

The Delete permission on patient records and the Void permission on invoices are sensitive. Assign these only to senior staff and ensure audit logging is enabled.

Tip

When in doubt, start with View-only permissions and add Create/Edit as needed. It's easier to grant additional access than to revoke it.

Manual area

Coverage

Operator notes

Overview

Permission Structure

Clinical Permissions

Financial Permissions

Operational Permissions

Administrative Permissions

Notes

Roles & Access Control

Role Types Explained

Custom Roles

Branch Management

System Settings

General Ledger

On this page