Set up team governance
At a glance
This tutorial walks you through configuring governance in your workspace: roles, approvals, and classifications. In a few steps, you will establish a control framework over data modifications.
What you'll do
- Configure roles for your workspace members
- Create an approval policy for sensitive modifications
- Classify your entities by confidentiality level
- Test the full approval flow
Prerequisites
- A workspace with at least 2 members
- Administrator or Owner role on the workspace
Step 1: Configure roles
- Navigate to Settings > Members in the sidebar.
- For each member, click on the current role to change it.
- Assign roles according to responsibilities:
- Administrator for governance managers
- Editor for contributors
- Viewer for read-only users
Tip: assign the most restrictive role necessary. An editor can create and modify entities, but cannot manage governance policies.
Step 2: Create an approval policy
- Open the Governance module from the sidebar.
- Select the Approvals tab.
- Click New policy.
- Configure the parameters:
| Parameter | Suggested value |
|---|---|
| Resource type | Instance |
| Operation | Delete |
| Required approvals | 1 |
| Approver roles | Administrator |
| Self-approval | No |
- Click Save.
This policy requires validation before any instance deletion.
Step 3: Classify your entities
- Navigate to Governance > Classifications.
- Click New classification.
- Create three levels:
| Classification | Description | Suggested color |
|---|---|---|
| Public | Data accessible without restriction | Green |
| Internal | Data reserved for organization members | Yellow |
| Confidential | Sensitive data, restricted access | Red |
- Apply a classification to your existing entity types from each type's detail page.
Step 4: Test the flow
- Sign in with an Editor account.
- Attempt to delete an existing instance.
- The deletion is put on hold: an approval request is created.
- Sign in with an Administrator account.
- Open Governance > Approvals > Pending.
- Approve or reject the request.
Expected outcome
Your workspace has a governance framework in place: roles control permissions, approval policies protect sensitive operations, and classifications indicate the confidentiality level of your data.
Next steps
- Governance overview — Explore all governance features
- Approvals — Configure advanced policies
Need help?
Contact us: Support and contact.