17+ User Roles for Schools: Beyond Admin vs Teacher

The Permission Nightmare

In our old system, you were either an 'Admin' (saw everything) or a 'Teacher' (saw almost nothing). Our librarian needed to manage book inventory and see which students had overdue items. To do that, she had full admin access — including teacher salaries, disciplinary records, and confidential parent communications. It was absurd, but there was no middle ground.

Our finance officer could see every student's academic record because that's what 'Admin' meant. Our teaching assistants had the same permissions as department heads. When GDPR auditors asked who had access to sensitive data, our answer was essentially 'everyone with an admin login.' They were not impressed — a problem that better policy management would have solved years earlier.

17+ Roles That Actually Make Sense

KiwiBee's HR and roles module mirrors how schools actually work. Our librarian has 'Librarian' access — inventory, borrowing records, overdue notices. Nothing else. Our finance team has 'Finance' access — payroll, billing, contracts. No academic data. Teaching assistants have 'TA' access — the classes they support, behavior logging, but not gradebook editing. Each role is a precise slice of the platform.

The core roles include: Super Admin, School Admin, Department Head, Teacher, Teaching Assistant, Scheduler, Finance, Student Affairs, Librarian, Sales Admin, Team Leader, and Academics — plus specialized roles multi-site organizations need. Each one was designed by people who understand that a scheduler needs different tools than a department head, even if they're both 'staff.'

The Compliance Win

When our next GDPR audit came, we could show exactly who had access to what. Student academic records: teachers and department heads only. Financial data: finance team only. Medical information: student affairs only. The auditor actually complimented our access control model. That's never happened before.