AmarEvents uses a Role-Based Access Control (RBAC) system to manage what each team member can do inside an organization or event. Roles are assigned to org members or event members and carry specific permissions such as event.edit, ticket.view, participant.manage, certificate.manage, and more. RBAC is configured at /organizer/roles and applied via the members management page.