Draft for internal review only — not legal advice. This document is a working draft based on the EquestrianIQ Pre-Launch Policy Pack (v0.1) and must be reviewed by qualified counsel before launch.
Purpose
This policy defines access permissions for users connected to a horse, club, coach account or professional record.
Default roles
Account owner · Horse owner · Primary rider · Coach · Groom · Vet · Farrier · Dentist · Bodyworker · Saddle fitter · Parent/guardian · Club administrator · Stable manager · View-only supporter · Emergency contact.
Permission levels
- No access — cannot view the horse or record.
- View only — can view selected records but cannot comment, edit, download or share.
- View and comment — can view selected records and add comments.
- Add records — can add new records in approved categories but cannot edit owner-created records unless allowed.
- Edit records — can edit approved records.
- Upload documents — can attach documents to approved records.
- Export records — can download or export selected records. Owner approval is required by default.
- Manage access — can invite, remove or change permissions. Defaults to owner/admin only.
Safe default permission matrix
| Role | Default access | Can add? | Can export? | Can manage access? |
|---|---|---|---|---|
| Account / Horse owner | All horse records | Yes | Yes | Yes |
| Primary rider | Training + selected care records | Yes | No by default | No |
| Coach | Training records, videos, selected performance notes | Comments / lesson notes | No by default | No |
| Vet | Selected health records only | Notes / documents if allowed | No by default | No |
| Farrier / Dentist / Bodyworker | Selected care records only | Notes / documents if allowed | No by default | No |
| Club administrator | Event/clinic attendance + emergency summary only | Limited | No by default | No |
| View-only supporter | Selected records only | No | No | No |