# Required permissions

## User permissions

In **Bitbucket Data Center**, user permissions can be managed in three ways, all of which are valid for use with **GitProtect**:

1. **Global Permissions** — the user account connecting **Bitbucket DC** with **GitProtect** must have at least **administrator** privileges. Using global permissions allows the application to protect all repositories available on the **Bitbucket DC** instance.
2. **Project Permissions** — alternatively, you can assign **write** permissions at the project level to the user account connecting **GitProtect**. This approach restricts synchronization to repositories within specific projects only.
3. **Repository Permissions** — permissions can also be configured individually for each repository:

* [x] **Read** — sufficient to perform backups, but cannot be used to restore repositories.
* [x] **Write** — allows both backup and restore operations.