When inviting users to an organization, admins currently cannot restrict which roles those users are allowed to access or switch into. This creates risk for organizations that work with contractors, vendors, or junior staff who should only operate within a narrowly defined role.

A recent request came from a contractor who needs to invite employees into Brelly but must ensure they cannot access or act as a PA. Without this control, an invited user could enter the PA role and send communications that may violate the Unauthorized Practice of Public Adjusting, exposing the contractor to compliance and legal risk.

Proposed enhancement

Allow admins to define allowed roles at the time of invitation or per user after invitation. For example, an invited user could be restricted to Viewer or Contributor roles and explicitly blocked from PA or other sensitive roles.

Key benefits

Improves compliance with regulatory requirements such as UPPA

Reduces risk of unauthorized or inappropriate communications

Supports safer collaboration with contractors and external partners

Gives admins finer grained control without increasing complexity for end users