Four-Eyes Approvals

Require two sets of eyes on sensitive changes Four-Eyes Approval adds a second layer of verification by requiring two authorized users to review and approve critical changes. This reduces the risk of mistakes, enforces internal policies, and protects against unauthorized actions.

With Four-Eyes enabled, changes to key organizational settings — such as user management or payment approval chains — must be approved by two separate users before taking effect.

⚠️
Four-Eyes applies to organizational changes, not to the actual approval of payments themselves.

How to set up Four-Eyes Approval

Navigate to Settings → Organization.
Under Organization security, select the areas where you want Four-Eyes Approval:
- Organization – Covers organization-level security settings (e.g. enabling/disabling Four-Eyes itself).
- User Management – Covers changes to roles and users.
- Approval Chains – Covers creating, editing, or deleting payment approval chains.
- Counterparties – Covers adding, editing, or deleting counterparties and their external accounts.
Under Four-Eyes Bypass, optionally enable Programmatic Access Users to delegate Four-Eyes approval to an integrated system.
💡
For example, if your ERP already has its own approval process for managing counterparties, this setting allows ERP-initiated changes to bypass Four-Eyes in Atlar while still requiring it for user-initiated changes.

⚠️
Important Changing the Four-Eyes settings themselves will also require Four-Eyes approval, except when enabling it for the very first time.

Best practices

Have multiple approvers to ensure coverage if key approvers are unavailable or leave the company.
Enable Four-Eyes for all features your organization uses to maximize protection.
Invite each person only once with a personal email address to prevent a single individual from acting as multiple users.
Follow the principle of least privilege when assigning roles—give only the minimum permissions necessary for each user.