Project roles
If you are an organization owner or project owner, you can manage members in your project. You assign project members a specific role that determines the member’s permissions within the Pinecone console. When you invite a member at the project-level, you assign one of the following roles:- Project owner: Project owners have global permissions across projects they own.
- Project user: Project users have restricted permissions for the specific projects they are invited to.
| Permission | Owner | User |
|---|---|---|
| Update project names | ✓ | |
| Delete projects | ✓ | |
| View project members | ✓ | ✓ |
| Update project member roles | ✓ | |
| Delete project members | ✓ | |
| View API keys | ✓ | ✓ |
| Create API keys | ✓ | |
| Delete API keys | ✓ | |
| View indexes | ✓ | ✓ |
| Create indexes | ✓ | ✓ |
| Delete indexes | ✓ | ✓ |
| Upsert vectors | ✓ | ✓ |
| Query vectors | ✓ | ✓ |
| Fetch vectors | ✓ | ✓ |
| Update a vector | ✓ | ✓ |
| Delete a vector | ✓ | ✓ |
| List vector IDs | ✓ | ✓ |
| Get index stats | ✓ | ✓ |
Customers who sign up for a Standard or Enterprise plan on or after August 18, 2025 cannot create pod-based indexes. Instead, create serverless indexes, and consider using dedicated read nodes for large workloads (millions of records or more, and moderate or high query rates).
| Permission | Owner | User |
|---|---|---|
| Update project pod limits | ✓ | |
| View project pod limits | ✓ | ✓ |
| Update index size | ✓ | ✓ |
API keys
Each Pinecone project has one or more API keys. In order to make calls to the Pinecone API, you must provide a valid API key for the relevant Pinecone project. For more information, see Manage API keys.Service accounts
This feature is in public preview and available only on Enterprise plans.