Purpose

This policy defines access levels and security measures for Figma to ensure proper collaboration, data protection, and role-based permissions.

Roles and Access Levels

The following roles are defined, each with specific access and permissions:f

1. System Administrator

Access Level: Unrestricted

• Permissions:
  • Manage organization-wide Figma settings
  • Add/remove users and assign roles
  • Create, edit, and delete files, teams, and projects
  • Configure integrations and enforce security settings

2. Leadership

Access Level: Elevated

• Permissions:
  • Create, edit, and manage projects
  • Share files internally and externally as needed
  • Provide feedback and review designs
  • Control team and project access restrictions

3. Student

Access Level: Moderate

• Permissions:
  • Create and edit designs within assigned projects
  • Collaborate on shared files
  • Leave comments for feedback
  • Cannot delete or move files outside designated areas

4. Guest

Access Level: Minimal

• Permissions:
  • View shared files only
  • Leave comments (if enabled)
  • No ability to edit, create, or move files

Access Control Measures

• Least Privilege Principle: Users should have the minimum level of access required for their responsibilities.
• Regular Audits: System and Security Administrators should periodically review user access.
• Role-Based Access Control (RBAC): Users should only be assigned roles aligned with their duties.