Castor EDC offers a fine-grained access control system allowing study administrators to define what users can view or do within a study.
Note: Permissions are assigned per user, per site, and can be managed individually or via custom roles.
Study admins can configure access according to the principle of least privilege.
See also: Define user roles in CDMS for additional context.
Three pre-existing roles are defined in Castor that reflect the common rights assigned to users:
- Admin: has rights for most actions.
- Data-entry: only has rights to add participants, view them, and edit data.
- Monitor: only has rights to view data and create queries.
| Permission | Description | Admin |
Monitor |
Data-entry |
| Add | Can create new participants | x |
x |
|
| View | Can view and print participants, can view queries and comments | x |
x |
x |
| Edit | Can add, edit and import study and repeating data | x |
|
x |
| Can view and edit a participant email address | x |
|
|
|
| Randomization | Can randomize participants | x |
|
|
| View Randomization | Can view the randomization allocation of a participant | x |
|
|
| Sign | Can sign forms | x |
|
|
| Lock | Can lock/unlock participants, forms and surveys | x |
|
|
| Televisit* | Can use the televisit functionality | x |
|
|
| Verify | Can perform (source data) verifications | x |
x |
|
| Query | Can open, respond and close queries | x |
x |
|
| Validation | Can review and resolve validations | x |
x |
|
| Archive | Can archive (and delete**) participants, surveys and repeating data | x |
|
|
| Export | Can export participant data | x |
|
|
| Send surveys | Can send surveys and manage participant groups | x |
x |
|
| View surveys | Can view and enter survey data | x |
x |
|
| Encrypt | Can encrypt fields | x |
||
| Decrypt | Can decrypt fields | x |
||
| Total permissions | 18 |
4 |
5 |
*Enabled upon request
**Only if the study has never been set to live
Management permissions
Represent advanced permission for users that are managing the study, in contrast to only performing data entry.
These rights provide access to the study management related tabs and can be assigned when inviting an user within the study, or can be assigned at a later stage.
These are as follows:
-
Participants: If a user has the Manage participants permission, they will see the Participants, Repeating Data and Surveys tab while the study is not live.
The exact data the user can access depends on the specific site rights.
For example: a user who needs to view the participants for 'site X' will need to have 'Manage participants' and 'View' rights for 'site X'. To create and modify participant groups (for the survey bulk invitations) the 'Manage participants' permission is needed.
- Forms: Allows the user access to study management tab 'Structure' and 'Form' (the Form Builder) to create, edit and export/import forms.
- Users: Allows the user access to study management tab Users.
- Settings: Allows the user access to study management tab Settings.
To view the Audit Trail, all management rights must be enabled.