> ## Documentation Index
> Fetch the complete documentation index at: https://docs.ontimebookings.com.au/llms.txt
> Use this file to discover all available pages before exploring further.
# Roles and access
> Control what each staff member can see and do, and manage passwords.
A staff member's roles decide what they can see and do. Open a staff member from **Settings → Operations → Staff**, then select **Roles**.
## Roles
| Role | What they can do |
| ----------------- | ------------------------------------------------------------------------------------------------------------- |
| **Admin** | Run the business — manage staff, services, settings, and bookings. |
| **Service staff** | Deliver services, manage their own schedule, and handle their own bookings. They appear on your booking page. |
| **Support staff** | Help run the business behind the scenes, without delivering services. |
A staff member can have more than one role.
## Where a role applies
Each role applies either to your **whole business** or to **one location**.
* **Whole business** — the role applies everywhere, at every location.
* **One location** — the role applies only at that location. For example, service staff at your city branch only.
You can't add the same role twice for the same person, and a business-wide role covers all locations, so you don't also need to add it per location.
On the staff member's page, select **Roles**.
Choose the role, then choose whether it applies to your whole business or one location.
Save. To remove a role, select the delete icon next to it.
Removing the last business-wide **Admin** role from someone asks you to confirm first. Make sure at least one person can still run the business.
## Passwords
Each person manages their own password under **Security** on their page. For their safety, you can't change another person's password — only they can. If someone is locked out, you can [resend their invite or create a fresh account](/set-up/staff/add-staff).