# Teams

Teams are ways to group user accounts into addressable entities in Panomics' access granting system. Teams enable powerful access definition strategies and workflows.

A user can belong to **any number of teams**.

## What teams enable

* Grant **Organization-level** permissions for system-wide management
* Reuse teams across Projects and Analyses for consistent access patterns
* Combine with **system teams** like **All Users** and **Guest** for internal-public and guest workflows
* Create specialized teams for different roles (e.g., Biologists, Data Managers, External Partners)

{% hint style="info" %}
Behind the scenes, even organizations are resources that parent every other resource. This enables teams with `admin` permissions on the Organization to have unrestricted access to **everything** in the organization.
{% endhint %}

## Organization-level permissions

<figure><img src="https://3894776587-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FUZMYHWMJyvkxhr9s6Lm5%2Fuploads%2Fgit-blob-d8d0f2b83e64b509885c651b394a3b00618435bc%2Faccess-control_3.png?alt=media" alt="Team details page showing organization-level permissions section"><figcaption><p>Organization Permissions</p></figcaption></figure>

Teams can be granted permissions that range from enabling management of various parts of the organization to enabling specific features. These permissions mirror the functionality that the previous Role system used to have in Panomics.

<details>

<summary>What organization-level permissions include</summary>

Organization-level permissions cover:

* **User management** - Adding/removing users, managing user profiles
* **Team management** - Creating and managing teams
* **Organization settings** - Configuring organization-wide settings
* **Billing and credits** - Managing billing accounts and credits
* **Collections and metadata** - Managing organization-wide collections
* **External drives** - Managing external drive connections
* **Bio-App management** - Managing organization-wide Bio-Apps

</details>

The **Inherited Permission** section allows you to grant less powerful administrator access to teams, pertaining to either only Projects (including their Analyses) or Bio-Apps.

{% hint style="info" %}
See [System Teams](https://documentation.panomics.bio/documentation/access-control/system-teams) for information about special teams like **All Users** and **Guest** that are automatically managed by Panomics.
{% endhint %}