How do I grant access to a new company step by step?

Once a company exists, bringing people in and giving them the right access is a sequence: Step 1 — Create users: Add the people who will work in the company (name, email). Always have them set their own password — for security the platform does not set passwords on someone's behalf. Step 2 — Assign roles: A role is a named bundle of permissions (for example finance_staff, support, manager). Assign each user the role that matches their job. A person can hold different roles in different companies. Step 3 — Check the permission matrix: Open the roles matrix to see exactly what each role can do, and adjust if needed. Every change to roles or permissions is automatically audited. Step 4 — Confirm scope: Company users only ever see their own company's data. Drivers are further restricted to only the shipments assigned to them. Step 5 — Enable extra protection: For sensitive accounts, enable two-factor authentication. That is the whole chain: user → role → permissions → scope → protection.