Team Management
The Team settings page lets you control who has access to your CostPilot organisation and what they can do within it. Reach it via Settings → Team.
Inviting Members
To invite a new team member:
- Navigate to Settings → Team
- Enter the person’s email address in the invite field
- Select their role (Viewer, Member, or Admin)
- Click Send Invite
The invited person receives an email with a link to accept the invitation. Once accepted, they appear in your team list as an active member, and a notification is generated in the platform confirming the addition.
Invitations are tied to the email address entered. If the recipient does not have a CostPilot account, they will be prompted to create one when they follow the invite link.
Pending invitations appear in the team list with a “Pending” status until accepted. You can revoke a pending invitation at any time before it is accepted.
Roles
CostPilot has three roles: Viewer, Member, and Admin.
Viewer
Viewers have read-only access to cost and operational data. They can:
- View the Dashboard, Cost Explorer, Nodes, Analysis, and Insights pages
- View notifications
Viewers cannot:
- Export cost data
- Change any settings
- Connect or disconnect clusters
- Invite or remove team members
- Access billing information
Viewer is the right choice for stakeholders — product managers, finance teams, or executives — who need visibility into costs without any ability to change configuration.
Member
Members have the same read access as Viewers, plus the ability to export data:
- View all dashboard, cost, and insights data
- Export cost data from Cost Explorer
Members cannot:
- Change any settings
- Connect or disconnect clusters
- Invite or remove team members
- Access billing information
For engineers who need visibility into Kubernetes costs and the ability to export reports, but should not be able to change configuration, Member is the right choice. Most team members should be Members.
Admin
Admins have full access to the organisation:
- All Viewer and Member capabilities
- Connecting and disconnecting clusters
- Managing team members (inviting, changing roles, removing)
- Configuring all settings, including labels, alerts, and billing
- Managing alert rules and notification channels
Admin role grants access to billing information and the ability to remove other admins. Assign it only to people who genuinely need full control over the account.
Removing Members
To remove a member:
- Navigate to Settings → Team
- Find the member in the list
- Click the remove action next to their name and confirm
Removal takes effect immediately. The user loses access to the organisation on their next page load. Removing a member does not delete their CostPilot account — if they belong to other organisations, those are not affected.
Multi-Tenant Support
A single user account can belong to multiple CostPilot organisations. This is useful for:
- Consultants or DevOps engineers managing infrastructure across several companies
- Platform teams managing separate staging and production accounts
- Agencies managing CostPilot on behalf of clients
Users with access to multiple organisations can switch between them within the platform. Each organisation’s data is fully isolated — there is no cross-tenant data visibility.
Security Best Practices
Principle of least privilege — grant Viewer or Member by default. Promote to Admin only when the person has a clear operational need for settings access or cluster management.
Review access periodically — when engineers change teams or leave the company, remove their access promptly. CostPilot does not have automatic deprovisioning tied to your identity provider.
Limit the number of Admins — one or two Admins per organisation is typically sufficient. More Admins increases the risk of accidental configuration changes.
CostPilot uses Clerk for authentication. Password policies, multi-factor authentication, and SSO configuration are managed through your Clerk account settings, not within CostPilot itself.