Before you start
Who can use this feature
Users on Figma Organization Plan
Users with Admin access can manage an Organization's settings.
Figma Organization gives you greater control over what's shared within your business.
Privacy and Security by Design
Security is part of everything we do. It’s top of mind in how we work, treat customer data, and develop our product.
- Figma has completed a SOC 2 Type II audit. SOC 2 is a security compliance standard for software companies in the United States. Its guidelines and policies help businesses, like Figma, protect customer data.
- Figma is also certified under the EU-US and Swiss-US Privacy Shield Frameworks. Privacy Shield protects the transfer of customer data between the United States and European Union (EU).
The Organization has ownership over all the Files created within the Organization. This includes Files within a member's Drafts, or Personal Space.
When you remove a member, all their Teams, Files and Projects will stay in the Organization.
Figma will also move Files a deleted member's Drafts to a shared folder in the Organization. Organization Admins can access these Files and delete or redistribute them.
Link Access Controls
You can choose which Files you want to share with your Organization. You can control how to share a File is via the File's Link Sharing settings.
Link Sharing Discovery defines how members of your Organization can find Files.
- Anyone with the link (including outside the Organization)
- Anyone at <Organization> with the link
- Anyone at <Organization> [Default]
- Only people invited to the File
Link Sharing Permissions setting determines what permissions they have on those Files.
- Can View (Viewer) [Default]
- Can Edit (Editor)
In an Organization you can also choose to completely disable Link Sharing. This will prevent anyone from outside your Organization from viewing your Files.
This is different from Link Sharing that is available on each File. To disable Link Sharing in your Organization, contact the Figma Support team.
In a Team, Permissions determine how members can interact with Files and Projects in the Team.
In an Organization, every member of an Organization has a Role and an Account Type. This controls what they can access, and how they interact with the Organization.
- Register official company domains for email addresses
- Invite members to your Organization as Members or Guests. Guests can only access resources you invite them to.
- Set and update Permissions at any time. Downgrade members to Viewer [Restricted] to restrict their access.
- Set different levels of Organization Access for Teams
Learn more about Roles and Account Types in our Permissions in an Organization article.
Activity Logs provide a record of how users are interacting with Files and resources. This allows you to track what's happening within your Organization:
- See who is accessing, copying and sharing Files
- Track changes made to Teams, Projects and File Permissions
- View Activity for individual members
- Track changes made by Organization Admins
- Identify and prevent misuse of Organization Resources
Learn more about viewing activity logs in an Organization.
Organizations that need enhanced security requirements can configure SAML SSO.
Security Assertion Markup Language (SAML) is a security standard for logging into applications.
Single Sign On (SSO) allows users to log into many applications or websites via one set of login details.
Figma has integrations with the following providers:
- Configure and Provision SAML SSO with Azure Active Directory
- Configure and Provision SAML SSO with Okta
- Configure and Provision SAML SSO with OneLogin
- Make logging in via Google SSO mandatory
You can also Set up a Custom SAML Configuration with a provider that isn't on this list.
Learn more about getting started with SAML SSO.
If you don't have SAML or Google SSO enabled, members of your Organization can add extra security via two-factor authentication (2FA).
When enabled, members will need to confirm their identity every time they log in to Figma.
Members will need to set this up individually, in their Account Settings. There isn't a way to enable 2FA or make it mandatory across an entire Organization.
If you're using SAML SSO, you may be able to enable 2FA with your Identity Provider.
Learn more about adding two-factor authentication to your account.