Ask more from CRM. Ask Attio.

3 min read

Permissions in Attio

Abby Uy Product Marketing

Table of Contents

As your go-to-market team grows, the role of your CRM expands across the organization. More roles rely on it, more data lives inside it, and more company decisions depend on it.

Companies need a way to ensure that the right teams can get the right access to the right data, without slowing anyone down.

That’s why today we're introducing a completely new permissions system in Attio, with object controls, team-based access, and cascading overrides. Together, you now have precise control over how access works across your entire workspace.

A new permissions model

This isn't just additional settings. It's a foundational infrastructure layer designed to support the way growing teams actually work, with shared ownership, cross-functional visibility, and data everyone can trust.

Object controls

You can now adjust the access level for every object in your workspace, with options for Read only, Read and write, and Full access.

  • Read only: Can view all record data for the object, but cannot update it.

  • Read and write: Can view and update record data for the object.

  • Full access: Can manage object settings including permissions and attributes, and can view and update record data for the object.

This means your sales team can own the Deals object while giving others read-only visibility. Or an exec can manage specific object settings, like creating and managing attributes, without needing admin access to the full workspace.

Team-based access

Instead of managing permissions one person at a time, you can now create teams and grant access to entire groups at once.

Create a Sales team, a CS team, a Finance team, an Ops team, etc. Then reuse those groups across objects, lists, dashboards, workflows, and sequences.

When someone joins or changes roles, you update their team membership once and access flows everywhere it needs to.

Cascading overrides

Setting access permissions now follows a clear hierarchy: workspace, then team, then individual member, where lower levels override higher ones.

Set sensible defaults at the workspace level, refine them by team, and add precise exceptions for specific people when necessary.

Need to exclude a contractor from a subset of data their team can access? Override at the individual level without restructuring the team. The system adapts to accurately reflect your org chart.

Why this matters

The best CRMs don't just store data. They give teams the confidence to put more data in, and the structure to collaborate around it safely.

That's the shift this launch enables. With the right controls in place, teams are more willing to centralize their work in the CRM. More data flows in. Cross-team visibility increases.

And as that shared context grows, every layer of Attio gets smarter and more useful.

Ask Attio and AI-powered workflows are increasingly powerful because they draw from all the rich context living in your CRM. So as your business grows and more of your company’s knowledge lives inside Attio, safeguarding that data becomes even more meaningful.

Better governance enables richer context, which enables more intelligence.

How it works across plans

Permissions are available on all paid Attio plans.

On Pro and Enterprise, you unlock the full system: workspace, team, and individual-level permissions with cascading overrides, giving you the precision that complex orgs need.

On Plus, you can manage access at the workspace level, setting a single permission that applies to all non-admin members.

Getting started

To try out new permissions on objects, you can head to Objects in your workspace settings or click Share on the top right of any object.

Share access by team, fine-tune exceptions when needed, and delegate ownership without granting full admin access.

Your CRM stays accurate, secure, and easy to manage as you scale.

And this is just the beginning of how we're investing in supporting larger teams in Attio.