Skip to main content
Every member of an organization has one of three roles: owner, admin, or member, from most to least privileged. There’s no separate read-only role.

What each role can do

Members have full operational access — everything to do with receiving, inspecting, replaying, and delivering webhooks. Team, billing, and organization settings are visible to them but read-only. Admins add everything about running the organization: members, billing, the audit log, and the organization’s name and URL. Owners can do everything an admin can, plus delete the organization.

How role changes are governed

You can only grant or change a role up to your own — an admin can promote someone to admin or member, but only an owner can make another owner. And the last owner can’t be demoted or removed, so an organization always has an owner.
An API key you create is capped at your own role: a key can never do more than the person who minted it. See authentication for key scopes.

Invite & manage members

Add people and set their roles.

Security & your data

How organizations are isolated from each other.