💡 Add team members to your NexCyber workspace, choose the right role for each, and manage access over time.

Invite your team & understand roles

Compliance is rarely a solo sport. NexCyber lets you invite teammates — compliance leads, security engineers, product managers, executives — and gives each of them the right level of access. This article walks you through inviting, role selection, and ongoing management.

When to invite teammates

You can invite teammates at any time after your account is verified. The most common patterns:

• Day 1 — invite your CISO or compliance lead so they see the same assessment you do.
• Pre-audit — invite an external consultant or auditor with view-only access.
• Post-launch — invite product managers responsible for specific products under compliance.

Team management is available from the Launch plan and above. On Free and Starter, only the account creator has access.

How to invite

1. Go to Settings → Team (or visit /team directly).
2. Click "Invite member".
3. Enter:
   • Email address (work email recommended)
   • Role (see below)
4. Click "Send invitation".

The invitee gets an email with a one-click link to join. The link is valid for 7 days. If it expires, you can resend it from the Team page.

Understanding the roles

NexCyber uses a simple two-tier role model out of the box:

Admin

• Can do everything the account owner can, except delete the company account or transfer ownership.
• Sees and edits all assessments, products, evidence, and the Trust Passport.
• Can invite, remove, and change roles of other users.
• Can change the subscription plan and billing details.

Use for: co-founders, CISO, head of compliance, head of product.

Member

• Can view and contribute to assessments and evidence.
• Cannot invite users, change roles, or modify billing.
• Cannot delete data.

Use for: product managers, engineers, contributors, individual contributors.

External auditors: for auditors and consultants who only need to see results, we recommend creating a Member account and sharing the Trust Passport URL for their review. Granular auditor roles are on our roadmap.

Removing a member

1. Go to Settings → Team.
2. Click the member's row.
3. Click "Remove".

The user immediately loses access. Their contributions (uploaded evidence, comments, assessments) remain attributed to them but read-only.

Changing a role

Click the member's row, then "Change role". The change is instant and the affected user sees the new permissions on their next page load.

What about ownership transfer?

If you're the account creator and want to hand the company over to someone else (e.g. you're leaving the company), open a chat with us — we handle ownership transfers manually to avoid lockouts.

Audit trail

Every team action (invite, remove, role change) is recorded in your audit log on the Portfolio plan and above.

→ See "Set your notification preferences" to control how each teammate gets notified.

💬 Need help?

• Reach out via our live chat (bottom-right) — Captain AI replies instantly, human experts within business hours.
• Email support@nexcyber.eu with [P1] for Command/Strategic priority issues.

ℹ️ Disclaimer — RICE provides a readiness analysis, not legal advice. Final compliance may require legal review or notified body certification.

Last reviewed: 2026-06-02 · NexCyber Help Center