Skip to main content
Xoxoday Plum restricts reward redemptions to designated primary and secondary account holders through built-in role-based access control, ensuring only authorized users can redeem points or gift cards.
Xoxoday Plum supports role-based access control (RBAC) within its reward marketplace, enabling organizations to define exactly who can redeem points, vouchers, and gift cards. Administrators configure redemption permissions at the account level, restricting access to designated primary account holders, secondary account holders, or both. This gives HR and finance teams precise control over how reward budgets are utilized across the organization. Primary account holders are typically program administrators or department heads who manage reward allocations and hold full redemption privileges. Secondary account holders may include team leads or designated employees granted controlled redemption access within defined parameters. Both roles are configurable within the Xoxoday Plum admin panel, and permissions can be updated at any time without a support ticket. Consider a company running a quarterly sales incentive program. The HR team, using Xoxoday Plum integrated with Workday or SAP SuccessFactors, distributes points to top performers. Rather than opening redemption to all employees, the admin designates regional sales managers as secondary account holders — ensuring points are redeemed only within approved programs and by verified recipients. This single configuration step eliminates a common source of reward budget leakage. This access governance matters most for enterprises with compliance requirements. Xoxoday Plum is certified under ISO 27001 and SOC 2 Type II, and its RBAC architecture supports the auditability standards regulated industries expect. Every redemption action by a primary or secondary holder is logged, giving administrators a clear trail for internal reviews or external audits. For organizations managing rewards across multiple business units or geographies — such as those running HR operations on Darwinbox — restricting redemptions by account role reduces unauthorized spend and keeps reward programs aligned with budget approvals. Xoxoday Plum’s access controls integrate with your existing user directory, so role assignments stay synchronized without manual overhead. When paired with Xoxoday Plum’s approval workflows, role-based redemption restrictions create a complete governance layer for your rewards program. Admins can set redemption caps per role, define eligible reward categories per account type, and receive notifications when thresholds are approached. This makes it straightforward to run compliant, auditable reward programs at scale — whether you manage fifty employees or fifty thousand. Learn more: Xoxoday Plum Help Centre — Points Redemption

How redemption approval workflows work

Learn how Xoxoday Plum routes redemption requests through multi-level approval chains before points are spent.

Setting redemption limits per user role

Understand how to cap the points or gift card value each account role can redeem within a given period.