# Team, roles & trust

> Fine-grained access, audit logs, and delivery you can trust.

Votare grows from three people to fifty without losing control. Base roles cover the basics; scoped permissions and member groups let you delegate precisely; and audit logs, email logs, and violation tracking mean you can always answer who did what, when.

## What you can do

### Roles and groups

Owner, admin, and member roles plus named groups (Dev, Design, PM…) that scope MVP voting, events, and report visibility.

### Scoped permissions

Delegate specific abilities — edit the planner, manage events, author reports, operate the time tracker, view MVP history — to a person or a whole group.

### Audit & email logs

Every sensitive action is recorded with actor, time, IP, and user-agent, and every transactional email is logged with provider and delivery status.

### Secure by default

Supabase authentication, CSRF protection on all mutations, rate limiting, and privacy-first visibility that only indexes what you make public.

## Documentation

- [Members, roles & groups](https://votare.app/docs/admin/members-and-roles)
- [Audit logs, email logs & security](https://votare.app/docs/admin/audit-and-security)

_Learn more: https://votare.app/features/team-and-access_
