{"section":"announcements","requestedLocale":"en","requestedSlug":"2025-11-03-new-access-control-acl-in-b2b-suite","locale":"en","slug":"2025-11-03-new-access-control-acl-in-b2b-suite","path":"docs/en/announcements/2025/november/2025-11-03-new-access-control-acl-in-b2b-suite.md","branch":"main","content":"As of November 4, 2025, the **B2B Suite** now features a new permission-based access control (ACL Access Control List). This update improves the security and management of users and purchasing organizations, ensuring that only authorized [roles](/en/docs/tutorials/roles) can view or edit store information.\n\nWith the new model, access to **buyer organizations**, **cost centers**, and **users** in the VTEX Admin now depends on specific permissions.\n\n## What has changed?\nPreviously, any user with access to the VTEX Admin could view and edit purchasing organization information.\n\nNow, with the new **Access Control List (ACL)**, only users with the required [Licence Manager](/en/docs/tutorials/license-manager-resources) permissions can perform these actions.\n\nThe available permissions are:\n\n- **buyer_organization_view**: Allows viewing organizations, cost centers, and users.\n- **buyer_organization_edit**: Allows creating, editing, and deleting organizations, cost centers, and users.\n\nBoth permissions can be configured in **Buyer Organizations > Management** when editing **User Roles** in the VTEX Admin.\n\n## What needs to be done?\nTo enable the new access control, update the **B2B Suite apps** to a compatible version. \n\nFor more information, see the [Enabling an access control list (ACL) in B2B Suite](https://developers.vtex.com/docs/guides/enabling-an-access-control-list-acl-in-b2b-suite) documentation."}