We are excited to introduce the Editor Role by Policy Type feature in this release. This feature gives administrators precise control over who can manage specific types of policies, improving access governance, editorial accountability, and data protection within the Policy Management section.

With this new capability, administrators can assign individual users the Editor role and link them to specific policy types. Editors will only be able to view and modify policies of the types they are explicitly associated with, ensuring that policy editing responsibilities are clearly defined and securely maintained.

While creating or editing a policy type, administrators can select one or more editors using the new Select Editors dropdown. If no editors are selected, the policy type remains unrestricted for all editors.

Administrators can edit existing policy types to add, remove, or change the associated editors at any time. Updates are enforced in the policy dashboard to reflect these changes.

Editors only see and manage policies for which they are explicitly associated. This ensures a focused experience and avoids unintentional edits or exposure to unrelated content. If permissions change, for example an editor is removed from a policy type, those policies are instantly hidden from their dashboard upon refresh or navigation. During active editing, if permissions are revoked, the editor will be notified and prevented from saving changes. However, if all editors are removed while one is editing, that user can still save their changes to prevent data loss.

Removing the Editor role from a user instantly removes their access to all associated policy types. If the role is reinstated, no previous associations are restored. This behaviour ensures that access is always intentional and reduces the chance of privilege creep. Administrators must manually reassociate the user to desired policy types after role re-granting.

All editor assignment actions are logged, including who made the change, which policy type it affected, the affected editor, and the timestamp. This level of logging provides accountability and supports audit and compliance efforts. Additional logs are generated for role changes and user deactivations to maintain a robust historical record.

Users see only their accessible policy types in dropdown filters across My Policies, Policy Management, and Add New Policy screens. The filter dynamically updates based on access changes.

All dropdowns related now support real-time search. Users can type to narrow options, view immediate matches, and get feedback when no options match. Selections are maintained even when options are filtered, improving the user experience across large datasets.

The Editor role by policy type feature strengthens governance and security by limiting editorial access to only the intended policy categories. It supports dynamic updates, minimizes risk of unauthorized changes, and simplifies administrative management of policy access.

This update automatically rolls out to all customers on Thursday 24 July after 10PM. There will be some downtime while these changes are carried out.