Understanding Permissions
When you create an AI Connection, you decide exactly what the AI tool can read. This guide explains each permission in plain language so you can grant only what the AI needs — and no more.
Store Info
Permission code: read:store
Gives the AI access to your store's profile, staff list, and general settings. Use this when you want the AI to know who works at your store, what the store is named, or how it is configured.
What the AI can see:
- Store name, address, and contact info
- Staff members and their roles
- Store preferences and settings
Example questions:
- "Who are the staff members at my Cebu branch?"
- "What service modes does my store support?"
Orders
Permission code: read:orders
Gives the AI access to your order history, including line items and statuses. This is the foundation for almost every business question an AI assistant can answer.
What the AI can see:
- Order history (filter by date, store, status)
- Line items on each order
- Order status: New, Processing, Ready, Completed, etc.
Example questions:
- "How many orders did I process yesterday?"
- "Show me all canceled orders this week."
- "What is my average order value for dine-in customers?"
Reports
Permission code: read:reports
Gives the AI access to sales reports, transaction summaries, and analytics. Pair this with Orders for the most powerful business-analysis persona.
What the AI can see:
- Sales reports by date range
- Transaction summaries
- Analytics and aggregated metrics
Example questions:
- "What was my total revenue last week?"
- "Show me a sales summary for March."
- "Which day of the week has the highest revenue?"
Products
Permission code: read:products
Gives the AI access to your product catalog, prices, and descriptions. Use this when you want the AI to answer questions about what you sell.
What the AI can see:
- Product catalog (name, description, category)
- Prices and pricing tiers
- Product attributes and modifiers
Example questions:
- "What products cost more than ₱500?"
- "List all products in the Beverages category."
- "Which products have a discount applied?"
Customers
Permission code: read:customers
Gives the AI access to customer profiles and purchase history. Use this for customer-insights and loyalty questions.
What the AI can see:
- Customer profiles (name, contact, address)
- Purchase history per customer
- Customer loyalty data (if enabled)
Example questions:
- "Who are my top 10 customers by total spend?"
- "How many repeat customers do I have?"
- "Show me the purchase history for customer Juan Dela Cruz."
Inventory
Permission code: read:inventory
Gives the AI access to stock levels and inventory locations. Use this for operational questions about what needs to be restocked.
What the AI can see:
- Stock levels per product
- Inventory locations
- Stock status (in stock, low, out of stock)
Example questions:
- "What products are running low right now?"
- "How much stock do I have for SKU ABC-123?"
- "List all out-of-stock products."
Financials
Permission code: read:financials
Gives the AI access to sensitive financial figures: cost of goods sold, gross margin, expenses, tax, cash variance, valuation, and profit-and-loss. Grant this only to AI tools you trust to handle revenue-level numbers.
What the AI can see:
- COGS, gross margin, and inventory valuation
- Expense entries and category breakdowns
- Tax summaries and payment reconciliations
- Cash variance, session variance history, and P&L snapshots
Example questions:
- "What is my gross margin by product category for last month?"
- "Show me the cash variance trend across the last 30 closed sessions."
- "Which expense categories grew the most this quarter?"
Operations
Permission code: read:operations
Gives the AI access to operational data: cashier sessions, events and bookings, and kitchen-display performance. Pair this with read:orders for end-of-shift and service-flow questions.
What the AI can see:
- Currently open cashier session and historical session totals
- Events, bookings, and staff schedules
- Kitchen Display System (KDS) ticket throughput and timing
Example questions:
- "How is the kitchen pacing today compared to last Friday?"
- "What is the status of the current cashier session?"
- "Which upcoming bookings need confirmation?"
Staff
Permission code: read:staff
Gives the AI access to per-staff sales, refunds, and discount activity. This includes employee names alongside performance figures, so treat it like PII.
What the AI can see:
- Per-staff sales totals and order counts
- Refund and discount activity attributed to staff
- Staff profile fields used in performance reports
Example questions:
- "Who are my top 3 staff by sales this week?"
- "Which staff member issued the most discounts last month?"
- "List orders handled by staff member Maria."
Choosing the Right Permissions
You don't need to grant every permission. Match the permissions to the persona you want the AI to play.
For high-level questions about sales, trends, and store performance.
Example: "What was my best-performing day last month?"
For stock-level questions and product catalog lookups.
Example: "Which products need reordering?"
For customer behavior and order-history questions.
Example: "What did customer X buy last month?"
For catalog analysis and best-seller questions.
Example: "Which products generated the most revenue this quarter?"
The Principle of Least Privilege
Grant only what the AI needs
A good security habit is to grant the minimum permissions required for the task at hand. If the AI only needs to answer order-level questions, don't also grant inventory and customers. You can always create a second connection with more permissions later.
Fewer permissions means:
- A smaller impact if credentials are ever compromised.
- Less data the AI can accidentally reference when answering unrelated questions.
- Cleaner audit trails when reviewing what the AI has accessed.
You can create multiple AI Connections with different permission bundles and revoke them independently. There is no limit on the number of connections per store.