Can I assign custom permissions to a Member?

No, currently Renta supports two fixed roles: Owner and Member. Granular custom roles are on the product roadmap.

How do I move a pipeline to another workspace?

Workspaces are strictly isolated environments. You must recreate the pipeline in the target workspace.

Can a user belong to multiple workspaces?

Yes, a single user account (email) can be added to an unlimited number of workspaces with different roles in each.

What happens to the workspace if the only Owner leaves?

To prevent lockout, we recommend always having at least two Owners. If access is lost, contact Renta support for identity verification and recovery.

Team & Roles management

Renta uses a Role-Based Access Control (RBAC) model to manage user access and security. This system allows you to collaborate on data pipelines within isolated environments called Workspaces.

Workspaces

A Workspace is the fundamental unit of isolation in Renta. It functions as a secure container for your data infrastructure.

Isolation model

Every workspace operates as a completely independent environment. Resources created in one workspace are not visible or accessible from another.

Data isolation. Sources, Destinations, and Pipelines exist only within their parent workspace.
Billing isolation. Each workspace has its own subscription plan and billing settings.
User isolation. User access is granted per workspace. Being an Owner in "Workspace A" does not grant access to "Workspace B".

Data residency

When creating a workspace, you must select a Data Processing Location. This setting determines the physical location of the cloud infrastructure processing your data.

Immutable Setting: The Data Processing Location is permanent. You cannot change the region after the workspace is created. To change regions, you must create a new workspace and migrate your pipelines.

Europe (EU). Compliant with GDPR requirements. Data remains within the EU.
United States (US). Optimized for US-based data sources and destinations.

Roles and permissions

Renta provides two pre-defined system roles. Access is binary: users are either administrators (Owner) or standard operators (Member).

Permission matrix

The following table details the specific capabilities of each role.

Capability	Owner	Member
Workspace Administration
Manage Workspace Settings (Name, Slug)	✅	❌
Delete Workspace	✅	❌
Manage Billing & Subscription	✅	❌
User Management
Invite New Members	✅	❌
Remove Other Members	✅	❌
Leave Workspace	✅	✅
Change Member Roles	✅	❌
Data Operations
Create, Edit, Delete Sources	✅	✅
Create, Edit, Delete Destinations	✅	✅
Create, Edit, Delete Pipelines	✅	✅
View Pipeline Logs & Metrics	✅	✅
Developer Resources
Manage API Keys	✅	❌
Access Developer Settings	✅	❌

Role definitions

The following table provides a breakdown of each role's capabilities and typical use cases.

Owner

The Owner role is effectively a "Workspace Administrator". Owners have unrestricted access to all aspects of the workspace.

Primary responsibility. Infrastructure management, billing, and team security.
Best practice. Assign this role to Team Leads, DevOps Engineers, and Project Managers. maintain at least two Owners for redundancy.

Member

The Member role is designed for daily operations. Members can build and maintain data pipelines but cannot alter the workspace configuration or security settings.

Primary responsibility. Building and monitoring data pipelines.
Best practice. Assign this role to Data Engineers, Analysts, and Developers.

Managing access

Managing team members involves inviting new users, updating roles as responsibilities change, and revoking access when necessary.

Only Owners can invite new users to a workspace.

Invite a new team member

Grant workspace access to a colleague.

Navigate to Team membersStep 1

Go to Settings > Team members tab. Click the Add member button.

Configure AccessStep 2

In the Add member sidebar, enter the user's email address and select the appropriate role (Owner or Member).

Send InvitationStep 3

Click Invite member. The user will receive an email with a secure link to join the workspace. The status will remain Pending until accepted.

Modifying roles

You can promote a Member to Owner or demote an Owner to Member at any time.

Navigate to Settings > Team members.
Click on the user in the list to open the Edit member sidebar.
In the Role selection section, choose the new role.
Click Save to apply changes immediately.

Revoking access

To remove a user from the workspace:

Navigate to Settings > Team members.
Click on the user in the list to open the Edit member sidebar.
Scroll to the bottom to the Remove member section.
Click the Remove member button.

Leaving the workspace: Members can remove themselves from the workspace at any time but cannot remove other users. To leave, follow the same steps above for your own user profile.

Ownership Requirement: A workspace must always have at least one Owner. You cannot remove the last Owner or leave the workspace if you are the only Owner. To leave, first assign the Owner role to another member.

Data Retention: Removing a user does not delete the pipelines or resources they created. All data configurations remain active in the workspace.

Best practices

Follow these recommendations to maintain a secure and efficient workspace environment.

Security & governance

Principle of least privilege. Default to the Member role for all new users. Only grant Owner privileges to users who explicitly need to manage billing or access.
Audit regularity. Review your Team members list quarterly. Revoke access for employees who have changed teams or left the company.
Service accounts. For API integrations, avoid using personal user accounts. Create a dedicated email alias (such as etl-bot@company.com) and invite it as a Member to generate API keys.

Environment strategy

Use multiple workspaces to implement a safe software development lifecycle (SDLC) for your data infrastructure.

Development workspace. For testing new sources and pipeline configurations. Grant simplified Owner access to developers here.
Production workspace. For live business data. Restrict Owner access strictly to Senior DevOps or Team Leads. Lock down permissions to ensure stability.

Frequently asked questions

Ready to get started?

Build your data pipeline today or get a personalized demo. Start free!

Need help?

Get expert support to ensure your project succeeds. We're here to help!

Feature requests?

Help shape our product! Share your ideas for new features and integrations.