Role-Based Access Control for Visa Consultant Teams
Control exactly which counsellors, branch managers, and admins can see or edit which cases, documents, payments, and reports — with pre-built roles, branch-scoped access, and instant onboarding and offboarding.
What does role-based access control actually restrict?
Role-based access control decides what a given staff member can see and do inside VisaBOS, based on the role their account is assigned — rather than every logged-in user having identical access to every case, document, payment record, and report. A small consultancy with two or three people often doesn't notice the absence of this layer, because everyone is close enough to the business that shared visibility isn't a real problem. That changes fast as a team grows past a handful of people, adds branches, or brings on staff who genuinely shouldn't see the consultancy's overall revenue, another counsellor's commission payout, or a client file that isn't theirs to manage. VisaBOS ships with common roles already defined — counsellor, branch manager, accounts/finance, and owner/admin — each with sensible default permissions for that role, and each adjustable by an admin where a consultancy's structure genuinely differs from the default. Access can also be scoped by branch, so a branch manager sees their own branch's full caseload without automatic visibility into every other location. This sits alongside, and works with, our multi-branch visa consultancy software — multi-branch software gives a consultancy one platform across several locations; role-based access control decides who, within that structure, gets to see what.
What happens without any access boundaries?
A growing team, unmanaged access, and financial data that ends up visible to people who were never supposed to see it.
What makes access control workable, not just restrictive?
Six capabilities that keep the right people seeing the right things, without turning permission management into its own full-time job.
Pre-Built Roles for Common Consultancy Structures
Sensible defaults, not a blank permission matrix
- ✓Counsellor, branch manager, accounts/finance, and owner/admin roles ship with sensible default permissions
- ✓Case visibility scoped to assigned caseload for counsellors, and to the full branch for branch managers by default
- ✓Financial and reporting visibility reserved for accounts/finance and owner/admin roles by default
- ✓New staff accounts inherit a role's defaults immediately, without an admin building permissions from scratch
Per-Role Permission Adjustment
Tune the defaults instead of living with them
- ✓An admin can adjust what a given role can view, edit, or export
- ✓Exceptions can be granted to an individual staff member without changing the role for everyone else in it
- ✓Changes take effect immediately across that staff member's account
- ✓No support ticket or vendor involvement required to adjust a permission
Branch-Scoped Access
Multi-branch visibility, controlled per branch
- ✓Case and reporting visibility can be scoped to one branch, several branches, or all branches per staff member
- ✓A branch manager sees their own branch's full caseload without needing visibility into every other branch
- ✓An owner or regional manager can be granted visibility across multiple or all branches
- ✓Works on top of the same multi-branch structure used by VisaBOS's multi-branch software
Financial & Reporting Access Controls
Revenue and payout data, kept to those who need it
- ✓Consultancy-wide revenue, branch P&L, and incentive payout reports restricted to accounts/finance and owner/admin roles by default
- ✓A counsellor can still see fee collection status on a case they are actively working, without broader financial visibility
- ✓GST invoicing and export access controlled separately from general case access
- ✓Report-level restrictions apply consistently whether a user views a dashboard or exports a CSV/PDF
Instant Onboarding & Offboarding
Roles change; access changes with them
- ✓A new hire is assigned a role at account creation and inherits its permissions immediately
- ✓A promotion or branch transfer is handled by changing the role or scope, not recreating the account
- ✓Access can be revoked instantly when a staff member leaves, without deleting their historical case activity
- ✓No manual per-permission checklist required for routine role changes
Works Alongside the Case Audit Trail
Access control limits exposure; the audit trail tracks it
- ✓Role-based access control governs who can see or edit a given case, document, or report
- ✓The separate case audit trail and compliance logging feature records who actually did what and when
- ✓Together, the two give a consultancy both a boundary and an accountability record
- ✓Neither feature replaces the other — they are complementary, not duplicated functionality
Access control works alongside our case audit trail and compliance logging feature — access control decides who can see or edit something, and the audit trail records what actually happened, so a consultancy gets both a boundary and an accountability record, not just one or the other.
How fast can you set up roles and permissions?
Default roles are ready on day one — most consultancies only need to adjust a few exceptions, not build a permission structure from scratch.
Assign Roles on Day One (a few minutes)
When a consultancy signs up, staff accounts are created with a role — counsellor, branch manager, accounts/finance, or owner/admin — and inherit that role's default permissions immediately. No blank permission matrix to fill in from scratch.
Adjust Scope by Branch and Exception
An admin scopes each staff member to the branch or branches they should see, and grants any individual exceptions a specific person genuinely needs — without changing the default role for everyone else.
Access Stays Current as the Team Changes
Promotions, branch transfers, and departures are handled by updating a role or scope, or revoking access — immediately, without recreating accounts or losing historical case activity.
Frequently Asked Questions
Common questions from consultancy owners about setting up roles, permissions, and branch-level access.
Enterprise-grade platform. India pricing.
No USD surprises.
All plans include unlimited leads, students, and visa cases. No per-user pricing tricks. Cancel anytime.
- 1 Branch
- Up to 5 Staff Accounts
- Lead Management + Pipeline
- Visa Case Management
- Document Management
- Appointments & Walk-in Log
- Payment Tracking & Invoices
- Exam Coaching Module
- Full Analytics Dashboard
- Multi-branch Management
- Up to 3 Branches
- Up to 20 Staff Accounts
- Everything in Core
- Exam Coaching (Batches, Tests, Assignments)
- Meta Lead Webhook (Facebook/Instagram)
- Razorpay Payment Integration
- Full Analytics Dashboard
- Internal Team Chat
- 50+ Granular RBAC Permissions
- Unlimited Branches
- Unlimited Branches
- Unlimited Staff Accounts
- Everything in Professional
- Cross-branch Messaging
- Priority Support + Dedicated Manager
- Custom Branding on Invoices
- SLA-backed Uptime Guarantee
- Early Access to New Modules
- API Access (coming soon)
- Personalised Onboarding Session