BlueConic Roles

BlueConic uses role-based permissions for its users. A role grants access to BlueConic functions, and a user can be assigned to one or more roles. You can grant users access to the BlueConic functionalities that suit their function within your enterprise.

Watch the video: Managing Roles

Preconfigured roles in BlueConic

BlueConic comes preconfigured with a number of roles. The following roles are available out of the box:

Role Description
Application Manager Manages the entire BlueConic application at your site. The Application Manager can add and remove channels (websites, email, mobile apps), add users authorized to log into and interact with BlueConic, and manage general BlueConic settings.
Content Manager The Content Manager generally supervises online marketing initiatives on all of your BlueConic domains. The Content Manager works mostly with BlueConic insights and in the Home tab but can also create, manage, and monitor dialogues.
Customer Insights Manager Responsible for creating connections and segments to provide rich insights on customer data.
Data Scientist Can create and run AI Workbench notebooks and insights. This also includes the "Notebook editor" permission for editing notebook code in AI Workbench.
Insights Only Only has access to create and view insights.
IT / System Administrator Installs and maintains the complete BlueConic deployment.
Online Marketer The daily user of BlueConic. He or she creates, manages, and monitors dialogues and engages in online conversations with visitors to your BlueConic channels.

Data visibility

At the top of the role access settings, there is a checkbox for PII (Personally Identifiable Information) under "Data visibility." Users that are within roles that have this option checked will have access to view data that is considered PII within profiles, groups, and timeline events. If this option is not checked for a role, those users will only be able to view data that is not considered PII. Learn more about data sensitivity and data visibility in BlueConic.

Screen_Shot_2022-03-31_at_12.13.30_PM.png

Creating custom BlueConic roles

Screen_Shot_2022-04-05_at_10.07.50_AM.png

You can modify existing roles, and create new roles as needed by choosing "Roles" from the "BlueConic Settings" (cog wheel) menu. When creating a role, you will have the ability to select and deselect all of that role's permission settings, as pictured below. This will determine what features and capabilities that users within the role will have access to.

Example role: Digital Privacy Officer (DPO)

An additional role some customers create in BlueConic is the Digital Privacy Officer (DPO). This is the only role allowed to view individual profiles and their PII, and optionally (as a separate permission) to edit the profile. A DPO role can also have powerful privacy capabilities, such as the ability to download or delete a profile.

Example role: Segmentation Specialist

Another example of a custom role could be a Segmentation Specialist. You may want users within this role to have access to Segments, Insights, and the Simulator. To grant more access to users with this role, select the checkboxes of the desired function.

Each function in the role access list maps to BlueConic menu items. BlueConic users see only the menu items to which access has been granted. For example, to a user in the role above, the menu bar would look like this:

How does the data scientist  roles develop machine learning algorithms and AI models in BlueConic?

The BlueConic home tab is always accessible, as are the Search feature and the "Notifications," "Help," and "Personal Settings" menu items. Other than that, the main menu only shows the "Profiles," "Insights," and "Simulator" items that the role grants access to.

Users can have multiple roles assigned, which will combine privileges. If one of the assigned roles grants access, the user is allowed access to the function. Roles are assigned to BlueConic users on the Users tab under Settings.

Breakdown of permissions

Feature Permissions

Listeners

Grants access to view, edit, and create listeners

Segments

Grants access to view, edit, and create segments

Dialogues
  • Grants access to view, edit, and create dialogues
  • Add new positions
    • Grants access to add new positions for dialogues
  • Templates
    • Grants access to edit and create dialogue templates
Connections
  • Grants access to view, edit, and create connections
  • API access key
    • Grants access to the BlueConic API Access Connection, which regulates access to BlueConic for any external software application using the BlueConic REST API
Lifecycles

Grants access to view, edit, and create lifecycles

Insights
  • Grants access to view, edit, and create insights and dashboards
  • Email notifications
    • Grants access to be able to configure, schedule, and send email notifications for insights and dashboards to their inbox or any other email addresses
Simulator

Grants access to view and use the simulator

Properties

Grants access to view, edit, and create profile properties

Profile timeline event types

Grants access to view, edit, and create profile timeline event types

Profiles
  • Grants access to view profiles
  • Edit profiles
    • Grants access to edit profiles
Groups
  • Grants access to view groups
  • Edit groups
    • Grants access to edit groups
External trackers

Grants access to view, edit, and create external trackers

Objectives

Grants access to view, edit, and create objectives

AI Workbench
  • Grants access to view, create, and edit parameters for notebooks in AI Workbench
  • Notebook editor
    • Grants access to view and edit notebook code in AI Workbench
Audit event Grants access to call Audit Events in the BlueConic API
Settings
  • Grants access to view and edit all settings
  • Channels and BlueConic hostnames
    • Grants access to view, edit, and create channels and hostnames
  • Plugins
    • Grants access to view, edit, and create plugins
  • Users
    • Grants access to view, edit, and create users
  • Roles
    • Grants access to view, edit, and create user roles
  • Privacy
    • Grants access to view and edit privacy settings
  • General
    • Grants access to view and edit general tenant settings
  • Merging
    • Grants access to view, edit, and create profile merging rules
General
  • Grants access to view and edit general settings
  • Bulk change & delete
    • Grants access to the bulk change and delete options for any objects the user has permissions for (e.g., Listeners bulk change and Listeners bulk delete)

Domain-based permission

Role-based permission in BlueConic determines which parts of BlueConic a user can access. Users assigned to the same role have exactly the same permissions to access the same BlueConic functionality. Note, however, that when domain-based permission is taken into account, users with the same role might not be able to modify the same items within BlueConic.