Skip to content

Access & Entitlements: Priorities & Context

Date: 2026-02-17 Domain: Access & Entitlements

Priority Ranking

No confirmed jobs yet — both signals are from ON (single source). But access control is a blocker for enterprise expansion and unlocks higher ACVs through more users per customer.

Emerging — Needs Validation

1. Enable regional finance teams to access treasury data with appropriate permissions - Source: ON (Feb 4 2026) - Current status: Not solved — all users see all data - Why it matters: ON wants to give Palm access to regional teams (APAC, Americas, EMEA) but needs entity-level restrictions. Amanda: "With Kyriba, we feel like we had so many training sessions... Palm plays a big role in terms of interfaces, it's way more intuitive." This is the path to $200-400k ACVs. - Key outcomes: Entity-level access restrictions, minimal training burden, regional self-service

2. Collaborate across global treasury organization without over-centralization - Source: ON (Feb 4 2026) - Current status: Not solved — treasury is fully centralized - Why it matters: ON: "Can we help them care and give them more information so they get more interested in it too, instead of it being so centralized." Regional teams need ownership, not just read access.

Why This Matters Strategically

Access control isn't just a feature — it's an expansion lever:

  • More users per customer → higher ACV, stickier contracts
  • Regional teams using Palm → more feedback, more validated jobs
  • Feature gating → clean way to offer tiers (viewer vs editor vs admin)
  • Blocks reporting (#2) — regional cash visibility requires entity-level permissions

Next Steps

  1. Validate with other customers — is ON the only one asking, or do Personio/others need this too?
  2. Define permission model — entity-level? Feature-level? Role-based?
  3. Ship minimal access control — viewer role with entity filtering as the smallest useful increment