# Roles and permissions

Understanding roles and permissions within the Global Commerce API suite is fundamental to ensuring secure and efficient access to our API collections. This guide outlines the roles and permissions associated with Shopper and Admin APIs. By adhering to these guidelines, you can ensure that the right level of access is granted to the appropriate individuals within your organization, thereby protecting sensitive information and maintaining operational integrity. Whether obtaining credentials for the first time or updating existing permissions, this resource will guide you through managing access in alignment with your business needs.

## Commerce API suite roles and permissions

The following table shows the roles and permissions required for each API collection:

| API collection                                                          | Permissions             |
| ----------------------------------------------------------------------- | ----------------------- |
| [Shopper APIs](https://docs.digitalriver.com/commerce-api/shopper-apis) | Shopper APIs permission |
| [Admin APIs](https://docs.digitalriver.com/commerce-api/admin-apis)     | Admin APIs permission   |

See the [Obtain API credentials](https://docs.digitalriver.com/commerce-api/admin-apis/product-management/getting-started) section for instructions on how to get the correct permissions.

## Global Commerce roles and permissions

The following resources in the [Admin APIs](https://docs.digitalriver.com/commerce-api/admin-apis) require additional [Global Commerce](https://gc.digitalriver.com/gc/ent/login.do) roles:

<table><thead><tr><th width="163">Resource</th><th>Roles</th></tr></thead><tbody><tr><td><a href="../admin-apis/refunds">Refunds</a></td><td>Customer Service Director, Customer Service Supervisor, or Customer Service Representative</td></tr><tr><td><a href="../admin-apis/sites">Sites</a></td><td>Site Manager</td></tr></tbody></table>