Hex Safe Enterprises are managed by important roles, each with its responsibilities and restrictions. There are multiple user roles in a Hex Safe Enterprise:
- Account Admin
- Admin Approver
- Initiator
- Approver
- Auditor
- Trader
- Trade Viewer
- Vault Initiator
- Vault Approver
Below is a summary of the user roles:
General Roles
| Action/Role |
Account Admin |
Admin Approver |
Initiator |
Approver |
Auditor |
|
Create/ Delete Users; Add API Users* |
✓ |
✗ |
✗ |
✗ |
✗ |
|
Create/Edit Vaults* |
✓ |
✗ |
✗ |
✗ |
✗ |
|
Initiate transactions |
✗ |
✗ |
✓ |
✗ |
✗ |
|
Approve transactions |
✗ |
✗ |
✗ |
|
✗ |
|
Manage Address Book |
✓ |
✗ |
✓ |
✗ |
✗ |
|
Approve Address Book changes |
✗ |
✓ |
✗ |
✗ |
✗ |
|
View Address Book |
✓ |
✓ |
✓ |
✓ |
✓ |
|
Manage Address Book Whitelisting |
✓ |
✗ |
✓ |
✗ |
✗ |
|
Approve Address Book Whitelisting |
✗ |
✓ |
✗ |
✗ |
✗ |
|
View Address Book Whitelisting |
✓ |
✓ |
✓ |
✓ |
✓ |
*feature only available via API or Hex Trust Customer Support at support@hextrust.com
Trading Roles**
|
Action/Role |
Trader |
Trade Viewer |
Vault Initiator |
Vault Approver |
|
Initiate withdrawals from the Trading Vault |
✗ |
✗ |
✓ |
✗ |
|
Approve withdrawals from the Trading Vault |
✗ |
✗ |
✗ |
✓ |
|
View settlement history |
✓ |
✓ |
✓ |
✓ |
|
Execute trades |
✓ |
✗ |
✗ |
✗ |
|
View order history |
✓ |
✓ |
✗ |
✗ |
Account Admin
The Administrator user role can manage user roles, vaults, address books, and whitelisting.
Administrators have permission to:
- Create, edit, and view Vaults
- Create/delete users
- Add API users
- Manage address whitelisting
- View and manage address book
Admin Approver
The Admin approver user role is a part of the administrator quorum that is required to approve changes for whitelisting and address book management.
Admin approvers have permission to:
- Approve changes to the address book
- Approve a new address for whitelisting
Initiator
The Initiator user role can initiate transactions on a day-to-day basis. This role is focused on Transaction & Policy Management, except for approving transactions and signing messages. Additionally, this user role has limited access to User Management permissions and view-only access to Account Management-related permissions.
Initiators have permission to:
- Initiate and cancel transactions/message signing
- Connect and transact on MMI or Wallet Connect
- Manage Address Whitelist and Address Book
- View Vaults, Deposit Addresses, Transactions, Address Book and Transaction Policies
Approver
The Approver user role can approve transactions and sign messages using the Hex Safe mobile app but cannot initiate transactions. This user also has limited User Management permissions and view-only access to Account Management.
Approvers have permission to:
- Approve or reject transactions/message signing
- View Vaults, Deposit Addresses, Transactions, Address Book and Transaction Policies
Auditor
The Auditor user role has the ability and authority to review and verify the accuracy of financial records and ensure legal compliance. This user role has view-only access to User Management, Account Management, Vaults, Transaction and Policy Management.
Trader
The Trader user role can execute trades and has comprehensive access to transaction-related information. This role can view settlement history and order history but cannot initiate or approve withdrawals from the Trading Vault. This role is focused on trading activities and monitoring transaction details.
Trade Viewer
The Trade Viewer user role has view-only permissions. Users in this role can view settlement history and order history but cannot initiate or approve withdrawals from the Trading Vault, nor can they execute trades. Their role is centered on monitoring and viewing transaction and trade-related information.
Vault Initiator
The Vault Initiator user role can initiate withdrawals from the Trading Vault and view settlement history. They cannot approve withdrawals, execute trades, or view order history. This role is designed to facilitate the initiation of withdrawals while providing visibility into settlement activities.
Vault Approver
The Vault Approver user role can approve withdrawals from the Trading Vault and view settlement history. They cannot initiate withdrawals, execute trades, or view order history. This role is focused on the approval process for withdrawals and ensuring that transactions are properly settled.