Xoxoday Plum supports a Super Admin role through its Role-Based Access Control (RBAC) framework, granting a designated administrator the highest level of authority over portal-wide settings, user permissions, and organisational configurations.
What the Super Admin role controls
A Super Admin on Xoxoday Plum can manage portal-wide settings, configure user roles and permissions, set organisational policies, and oversee all programme configurations. This includes defining which employees can create reward campaigns, approve budgets, or access reporting dashboards — without needing external support for every administrative change. When your organisation integrates Xoxoday Plum with an HRIS like Workday or Darwinbox, the Super Admin controls how employee data syncs, which directories are trusted, and how onboarding triggers reward actions. In single sign-on setups using identity providers like Okta or Azure AD, the Super Admin also determines which providers are authorised to authenticate users into the portal.Why RBAC matters at scale
As reward programmes expand across multiple teams, business units, or geographies, access governance becomes critical. Xoxoday Plum’s RBAC model lets the Super Admin delegate responsibility downward — creating Admin, Manager, or Viewer roles with scoped permissions — without losing central visibility or control. For example, a regional HR manager at your organisation might hold Admin access limited to their country’s employee group, while the global rewards lead retains Super Admin rights across all regions. This structure prevents accidental configuration changes while keeping programme management distributed and efficient.Security and compliance alignment
Because the Super Admin role carries elevated privileges, Xoxoday Plum’s access model is built to enterprise security standards. Xoxoday Plum holds ISO 27001 and SOC 2 Type II certifications, ensuring that privileged access controls satisfy rigorous audit and compliance requirements. Organisations can also enforce multi-factor authentication for Super Admin accounts as an additional safeguard.Setting up and transferring the Super Admin role
The Super Admin role is configured during initial account setup and can be reassigned through the portal’s user management section. If you need to transfer Super Admin access — for example, during an IT handover — the change is completed directly within the portal without requiring Xoxoday involvement. Only one active Super Admin exists per account by default, though multiple designated administrators can be supported depending on your account configuration. Learn more: [Xoxoday Plum Help Centre — Product requirement](How does role-based access control work in Xoxoday Plum?
Understand how Xoxoday Plum’s RBAC framework structures Admin, Manager, and Viewer roles to keep your rewards programme secure and well-governed.
How do I add or manage users in Xoxoday Plum?
Learn how to invite users, assign roles, and control portal access for individuals and groups within your Xoxoday Plum account.