Skip to main content
VendexLabs is organized around organizations (accounts). Your vendors, lists, assessments, and settings all belong to an organization, and people are granted access by being added as members with a role.

Organizations

An organization is your team’s workspace. It owns:
  • Your vendor lists (including the default master-list)
  • Every assessment and its history
  • Members and their roles
  • Organization settings and notification preferences
A person can belong to more than one organization and switch between them in the app.

Roles

Access within an organization is governed by four roles, ranked from least to most privileged. Each role includes everything below it.
RankRoleIn one line
3OwnerFull control, including ownership.
2AdminManage the team, plus everything a member can do.
1MemberCreate and edit vendor content.
0ViewerRead-only.

Permission matrix (RBAC)

VendexLabs enforces role-based access control consistently across the app and the API. The capability gates are:
CapabilityViewerMemberAdminOwner
View lists, vendors, assessments, metrics
Create/edit vendors, lists, assessments, evidence
Manage subscribers & alert settings
Invite/remove members, assign roles
Assign the owner role
Guardrails protect your organization: the last owner can’t be removed or demoted, an admin cannot assign the owner role, and only an owner can promote someone to owner.
These are organization roles. They are separate from VendexLabs platform administration, which governs global vendor data (like the shared vendor directory) and is not something customer organizations manage.

Inviting and managing people

1

Invite members

An admin or owner adds people by email. New members default to the Member role unless you choose otherwise.
2

Adjust roles

Change a person’s role as their responsibilities change. Only an owner can promote someone to owner.
3

Remove access

Admins and owners can remove members. VendexLabs prevents removing the last owner.
When someone is added or their role changes, VendexLabs emails them so access changes are transparent.

Sign in & SSO

Google, Microsoft, and enterprise single sign-on.

Settings & notifications

Organization settings and who gets alerted.