Yotpo User Management Guide

• Model type: role-based
• Description: Yotpo uses a role-based model with at minimum Admin and Member roles. Granular per-product or custom role configuration is not confirmed in publicly available official documentation.
• Custom roles: No
• Custom roles plan: Not documented
• Granularity: Coarse role-level access (Admin vs. Member); per-feature granularity not publicly documented.

1. Log in to the Yotpo dashboard.
2. Navigate to Settings > Account > Team Members.
3. Click 'Invite Team Member' or equivalent button.
4. Enter the invitee's email address and select a role.
5. Send the invitation; invitee receives an email to accept and set up access.

Required fields: Email address, Role selection

Watch out for:

• Invitation flow and exact field labels are not fully confirmed from publicly accessible official documentation.
• SSO-based login requires enterprise plan; without SSO, users authenticate via email/password.
• No SCIM provisioning is available, so users cannot be auto-provisioned from an IdP directory.

• Can delete users: Unknown
• Delete/deactivate behavior: Official documentation does not explicitly describe whether removing a team member constitutes a permanent delete or a deactivation. Behavior is unconfirmed from publicly available sources.

1. Navigate to Settings > Account > Team Members.
2. Locate the team member to remove.
3. Select the option to remove or revoke access (exact label unconfirmed from public docs).

Watch out for:

• Data impact of removing a user (e.g., effect on reviews, campaigns, or automations they configured) is not documented in publicly available official sources.
• No SCIM deprovisioning means offboarding must be performed manually in the Yotpo dashboard.

Seat type details are not yet verified for this app.

• Where to check usage: Not documented
• How to identify unused seats: Not documented
• Billing notes: Yotpo pricing is product-based (Reviews, SMS & Email, Loyalty, Subscriptions) rather than per-seat. Seat counts and per-user billing details are not publicly documented. Enterprise pricing is custom and negotiated directly with Yotpo.

Because Yotpo has no SCIM support, every provisioning and deprovisioning action requires a manual step in the dashboard. For teams managing Yotpo access through Okta or Entra ID, there is no automated sync - joiners, movers, and leavers must each be handled individually.

Yotpo's pricing is product-based rather than per-seat, so unused access does not directly translate to a license cost. However, stale accounts with Admin roles represent a security exposure that only manual audits can surface. There is no documented path to check seat usage or identify inactive users from within the dashboard.

Community evidence is not specific enough to quote or summarize yet for this app.

Yotpo's manual user management is workable for small teams but becomes a compliance liability at scale. The two-role model (Admin / Member) is coarse, and per-product permission granularity is undocumented - making it difficult to enforce least-privilege access across Reviews, SMS, or Loyalty modules.

SSO via SAML is available but requires an enterprise plan, and SSO alone does not provision or deprovision users. Teams with strict offboarding SLAs should treat every Yotpo user removal as a two-step process: delete from the dashboard and, if SSO is active, disable in the IdP.

Bottom line

Yotpo's team management covers the basics - invite by email, assign Admin or Member, remove manually - but it is not built for automated identity workflows. There is no SCIM, no granular role configuration, and no documented way to audit inactive users from the dashboard.

For organizations where every app must participate in a governed user lifecycle, Yotpo requires a compensating control: either API-based provisioning or a disciplined manual offboarding checklist tied to your IdP.