User Management

User Roles Explained

BeamEdUp uses a role-based access control system with 5 distinct roles. Each role determines what a user can see and do on the platform. Understanding these roles is essential before you start adding users to your organization.

The Five Roles

Organization Admin

School owner / Principal / Director

Full control over their organization. Org Admins create branches, manage all users, configure settings, and oversee exams and results across every branch.

✓ All branches within the organization

✓ All users, classes, and exams

✓ Organization settings and branding

✓ Billing and subscription details

✓ Analytics across all branches

Branch Admin

Campus head / Coordinator

Manages a specific branch (campus). Branch Admins handle users, classes, and exams within their assigned branch. They cannot see data from other branches.

✓ Users in their branch only

✓ Branch classes, subjects, and timetables

✓ Exams created within the branch

✓ Branch-level analytics

✓ Branch settings and terminology

Instructor

Teacher / Professor / Trainer

Creates exam content, manages assigned classes, grades submissions, and tracks student performance. Instructors work within their assigned branch.

✓ Question bank (create and manage)

✓ Exam creation, scheduling, and grading

✓ Assigned classes and enrolled students

✓ Student performance analytics

✓ Announcements to their classes

Learner

Student

Takes exams, uses study tools, earns gamification badges, and tracks academic progress. Learners see only what is assigned to them.

✓ Assigned exams and practice tests

✓ Study tools and resources

✓ Gamification: badges, points, leaderboards

✓ Certificates and achievements

✓ Personal performance dashboard

Guardian

Parent / Family member

Monitors their child's academic progress including upcoming exams, results, and certificates. Guardians are linked to one or more learner accounts.

✓ Child's upcoming and past exams

✓ Performance analytics and trends

✓ Certificates and report cards

✓ Notification preferences

✓ Communication with instructors

User Management Permissions

Not every role can manage users. This matrix shows which roles have access to user management features:

Feature	Org Admin	Branch Admin	Instructor	Learner	Guardian
Create Users
Edit Users
Delete Users
Bulk Import (CSV)
Assign Roles
Change User Status
View All Users
View Branch Users
Assign Branch Admin
Export User Data

Role Hierarchy

Roles follow a natural hierarchy. Higher-level roles can manage users at their level and below, but never above:

Org Admin — can manage Branch Admins, Instructors, Learners, and Guardians within their organization
Branch Admin — can manage Instructors, Learners, and Guardians within their branch
Instructor — can view learners in their assigned classes (read-only)
Learner & Guardian — can only manage their own profile

Multiple Roles

A user can hold multiple roles simultaneously. For example, someone could be both an Instructor and a Branch Admin. The system grants access based on the combined permissions of all assigned roles.

Least Privilege Principle

Assign users only the roles they need. A teacher should get the Instructor role — not Org Admin. You can always add more roles later if their responsibilities change.

Custom Roles

Organization Admins can also create custom roles with specific permission combinations for advanced use cases. See Settings → Roles & Permissions for details.

Multi-Branch Operations

Creating Users