TIM TECHNOLOGIES
Role-based access

User access levels

TIM4biz uses role-based access control to ensure every user sees only the data and functions they are entitled to. Combine an access level with branch and department scoping to enforce a strict, auditable separation of duties.

Sign in to manage users → Security overview

The three access levels

Every TIM4biz user is assigned one of three access levels. The level controls which menus, screens and actions are available once the user is signed in.

Administration

Administration

Full system control for IT, telecoms and security administrators responsible for the call accounting platform.

  • Add, modify and remove users
  • Configure PBX feeds, sites and extensions
  • Manage carriers, tariffs and rate plans
  • Set branch and department scoping for other users
  • Access audit logs and security settings
Accounts

Accounts

For finance, billing and cost-recovery teams that need to reconcile call costs and produce invoices, but should not change system configuration.

  • View and adjust call costs
  • Mark up and on-bill departments or clients
  • Produce billing and recovery reports
  • Export data for accounting systems
  • Cannot change user accounts or PBX configuration
Reporting only

Reporting only

A read-only level for managers, team leaders and analysts who need visibility of call activity without any ability to alter data.

  • Run standard and custom reports
  • View dashboards and call activity
  • Schedule and receive email reports
  • No edit, delete or configuration rights
  • Ideal for line managers and auditors

Capability comparison

At a glance, here is what each access level can do across the most common areas of the system.

Capability Administration Accounts Reporting only
Run reports & dashboardsYesYesYes
Schedule email reportsYesYesYes
View & adjust call costsYesYesNo
Manage carriers & tariffsYesView onlyNo
Add & manage usersYesNoNo
Configure PBX feedsYesNoNo
Set branch / department scopeYesNoNo
Access audit logsYesNoNo

Restricting users to branches and departments

On top of the access level, every user can be scoped to one or more branches and departments. Scoped users see only the calls, extensions and reports for the parts of the organisation they are responsible for — everything else is hidden from menus, lookups and report output.

Branch scoping

Restrict a user to one or more branches, sites or offices. Useful for regional managers who should only see their own location, or for managed-service providers running TIM4biz across multiple customers.

Acme Corp
 Sydney HQ (allowed)
 Melbourne Branch (allowed)
 Brisbane Branch hidden

Department scoping

Restrict a user to specific departments or cost centres within a branch. A sales manager can be limited to the Sales department, while finance retains full visibility for billing and recovery.

Sydney HQ
 Sales (allowed)
 Support (allowed)
 Finance hidden
 Executive hidden

Putting it together

Access level and scope combine to give a precise, least-privilege definition of what each person can do. A few common examples:

Example

Branch manager

Reporting only, scoped to the Melbourne branch. Sees dashboards and runs reports for Melbourne staff only — no cost adjustments, no visibility of other branches.

Example

Group financial controller

Accounts, no scope restriction. Sees every branch and department for billing and cost-recovery, but cannot add users or change PBX configuration.

Example

Department team leader

Reporting only, scoped to a single department. Receives a weekly scheduled report on their team's activity — and nothing else.

Give the right people the right view

Combine access levels with branch and department scoping to enforce least-privilege access across your whole organisation.

Sign in & configure users →