selected work
|
connected loto rebuilt
|
managing users wisely

Managing Users Wisely

Bringing structure, visibility, and role clarity to user management on the cLOTO platform.

User list table with names, email, roles, and status including active, deactivated, and invitation sent.
overview

A user database that finally makes sense to the people managing it

User management is often treated as a utilitarian feature — a table of names and roles that admins rarely think twice about. On the cLOTO platform, where every user has a defined role with specific permissions tied to life-safety procedures, getting it right mattered. This project covered the end-to-end redesign of user management: viewing and filtering the user list, adding, editing, deleting and deactivating users, and helping EHS managers — key users — understand who can do what, and why.
Discovery & Requirements

Starting with what already existed...

The original platform already had a user management functionality — but it was bare-bones: first name, last name, username, password, user role (with no explanation of what each role meant or what it allowed), and company. It was a starting point, not a solution.
User profile card for shift manager showing name, company unavailable, and edit and delete icons.

...refined through close collaboration with product...

The first step was working through a series of questions with the product team that might seem simple but had real implications for how the feature would behave.

  • Should a user profile be editable while that user is actively executing a procedure? Yes.
  • Can a user be deactivated mid-procedure? Yes. Should a user be able to deactivate themselves? No — and the existing platform had that affordance, which we agreed to remove.
  • Should there be an avatar? Usage data showed existing users weren't uploading profile pictures, so we proposed removing it — and product agreed.
  • Should the list remain in card view? No — a table view better served the needs of administrators managing potentially large user databases.
Digital sticky notes outlining user functionality, list views, and user edit/remove abilities in a system.

...and every field made deliberate

With the structural decisions made, I worked through every data field from first principles — applying UX best practices to turn a rough list into a fully considered data model.

  • For names, I accounted for extremely long names and dual last names — common in Latin American and other markets.
  • For usernames, I designed a system that automatically generates a suggestion by combining first and last name, with a defined character limit.
  • For passwords, I researched and introduced requirements aligned with current security best practices.
  • The add user form was structured into clearly separated required and optional sections to reduce cognitive load and guide admins through the process efficiently.
example:

Defining granular requirements and conditions for the username input field

User adding interface showing personal info, account details, cLOTO role, company info, and username validation states.
Designing the Experience

A table view over cards,..

The original platform offered a card view for users. For user management, where administrators are working with potentially large lists and need to quickly scan, sort, and filter, a table view felt like the right call — and the only view needed. The table was designed to surface the most critical information at a glance: name, role, and key identifiers, with robust sorting and filtering to help admins navigate large user databases efficiently.
User list table with columns for first name, last name, username and email, role, and status in a web interface.

...a role system made legible for the first time,...

The cLOTO platform has six roles in a defined hierarchy - each with its own permission level:

  • Super Admin
  • Maintenance Manager Plus
  • Safety Manager
  • Maintenance Manager
  • LOTO Coordinator
  • Authorized Employee

Revising the role structure itself was out of scope, but it was obvious that platform users were in the dark about what their role actually meant. The roles were platform-specific rather than industry-standard, with no reference point for users to understand their own permissions. I studied the full role permission matrix thoroughly and created a simplified visual reference that made the hierarchy and capabilities of each role immediately clear — linked contextually throughout the platform wherever cLOTO roles were mentioned.

before:

What the role matrix was

assumption:

With platform-specific cLOTO roles, users were in the dark about what their role actually meant, and didn't have a way to check that

Table showing user roles and permissions for IDP, Machines, Tasks, and Procedures systems in a grid format.
after:

What the role matrix became

Table showing cLOTO roles with checkmarks indicating their permissions for procedures, equipment, and user management.
easily accessible:

The role matrix is now cross-referenced throughout the platform whenever user roles are mentioned

Scroll/swipe to explore
Right-pointing arrow icon
Form section with required dropdown to select cLOTO Role and optional dropdown for Work Location assignment.User info for Antonia Banderas with email, phone, Maintenance Manager Plus role, and active status.

...and a UI that helped define the design system itself

User management was the first flow to be built with the new design system — which was being developed in parallel. Rather than waiting for the system to be complete before designing the flow, the two workstreams informed each other. UI explorations done for user management became proving grounds for component decisions — color palette, styling of core UI, how tables should behave, how status badges should look and work, how forms should be structured. These explorations helped the team land on the overall visual direction for the design system that would carry forward across the entire platform.
dependencies:

Early UI explorations for the user management flows helped shape the design system

User interface wireframes showing different modal and full-screen add user forms in rounds.
User Research

Validating our assumptions — and uncovering what was missing...

With a high-fidelity interactive prototype built in ProtoPie, I ran usability testing sessions with target users. The sessions confirmed the core design decisions:

  • the table view was immediately intuitive;
  • the simplified visual role matrix — built on the assumption that users needed a clearer reference for platform-specific roles — was well received, proving that surfacing role information in a digestible way was exactly the right call;
  • the add user form — with its auto-generated username and required/optional structure — was praised as simple and intuitive across all user skill levels;
  • the "add another" button for bulk user creation was well received;
  • a notes section for tracking special circumstances emerged as a valued addition.
prototyping:

The high-fidelity prototype allowed for an "immersive experience" during usability testing

data synthesis:

Affinity mapping helped to see trends

Color-coded sticky notes organized in sections with user feedback and feature ideas on a digital whiteboard.

...and what EHS managers truly needed to manage their workforce...

Testing also surfaced a clear set of unmet needs that went beyond the original product scope — all of which were accommodated in the final design.

  • Users needed company and department information for multi-facility operations, and an employee ID field for HR tracking and internal processes.
  • Export functionality was requested for teams relying on Excel-based user lists.
  • A new user status emerged — one for users who had been invited but hadn't yet accepted — requiring its own visual treatment.
  • Users also wanted color-coded status indicators for quick visual assessment.
  • When deactivating a user, the managers wanted to be able to add a deactivation note specifying the reason — whether parental leave, a compliance issue, or another circumstance — giving the team the context they needed when reviewing inactive accounts.
  • When adding a user's role, it became clear that teams needed to distinguish between full-time employees and contractors — which I accommodated by adding a "this is a contractor" checkbox after the role dropdown.
example:

When deactivating a user, the EHS managers wanted to be able to add a note specifying the reason, which was accommodated in the design iteration

User interface showing steps to deactivate and reactivate Antonia Banderas with notes and status details.

..with one significant exception

The most prominent unmet need was training and compliance tracking — users wanted to see statuses pertaining to compliance training and audit - who is due, whose training is expired etc. Training status, they explained, directly determines whether a user is authorized to execute lockout procedures. It was a legitimate and important request. However, our legal department determined that surfacing this information would introduce liability for MasterLock, and there was no time within the project timeline to develop the necessary legal protocols. The feature was scoped out, with the intention of revisiting it in a future phase.

descoped:

Statuses pertainign to compliance training - for legal reasons

User status table with labels for Active, Invitation Sent, Training Pending, Due, Expired, and Deactivated.

...brought to life through carefully crafted language

Across every screen, field, and interaction, I meticulously crafted the UX copy — status labels, form field names, placeholders, and supporting text — ensuring that every word was clear, consistent, and purposeful. In a platform where a misunderstood status or an ambiguous field label can lead to the wrong person being authorized for a safety-critical procedure, language isn't a finishing touch. It's a design decision.

my role

End-to-end design ownership, from research to delivery

As a Senior Product Designer, I owned the full UX and interaction design process — spanning discovery, requirements definition, information architecture, high-fidelity prototyping, usability testing, and final design specifications — while also authoring all UX copy to ensure clarity and consistency across the interface.
Refinements & Finalization

Incorporating what testing taught us...

Usability testing validated the core design decisions and surfaced the unmet needs we've already covered — all of which were incorporated into the next iteration. Beyond the structural and functional additions, testing also confirmed that status visibility was a priority: administrators needed to understand not just whether a user was active or deactivated, but what each status meant in practice and at a glance. Color-coded indicators and carefully crafted status labels were refined to ensure that meaning was immediately clear without requiring interpretation.

...and delivering specs that left nothing to interpretation...

The final design specifications were delivered across three breakpoints — web, tablet, and mobile — documenting every screen, state, condition, and interaction. Errors, loading states, empty states, edge cases, and conditional logic were all accounted for and annotated, leaving no room for developers or QA to second-guess intent.
handoff example:

Location dropdown conditions & labels for when it's expanded, collapsed, has or doesn't have a search bar, scroll behavior, empty state, error handling etc.

User management interface showing add user form with fields for personal, account, and company information.

...including patterns that scaled beyond this flow

The sorting and filtering behaviors designed for the user list were documented as cross-platform guidelines — establishing reusable patterns for how sorting and filtering should work consistently across the entire cLOTO platform. Like the image functionality guidelines that emerged from isolation point management, these became part of the design system documentation, ensuring that decisions made once were applied consistently everywhere.
documentation:

Sorting and filtering behavior established was documented and applied as a cross-platform pattern for other areas

User interface showing lock list tables with sorting order, hover, and click interactions on status and lock name.
outcome

From a bare-bones form to a thoughtful, field-ready experience

The redesigned user management experience gave the EHS mangers the clarity and control they needed to manage their workforce confidently. Users could now see not just who was in the system, but what role they held, what that role allowed them to do, and what their current status meant in practice. The qualitative feedback from usability testing reflected a meaningful improvement in user satisfaction — administrators felt informed and in control rather than confused and uncertain. Beyond the flow itself, the UI explorations done as part of this project helped establish the visual foundation that the rest of the cLOTO platform was built upon.
EHS manager:

“I think what I have seen is very simple in a good way - it takes you where you need it to. It's very easy.”

key contributions
  • Led end-to-end UX design and research for the user management experience
  • Collaborated with the product team to define and refine requirements, resolving edge cases and removing redundant functionality
  • Worked through every data field from first principles, applying UX best practices to build a fully considered data model
  • Created a high-fidelity interactive prototype in ProtoPie to validate requirements and surface unmet user needs
  • Designed a table-based user list with robust sorting, filtering, and clear status visibility
  • Created a simplified visual role matrix and integrated it contextually across the platform
  • Accommodated all user-requested additions surfaced in testing, navigating a legal constraint around training and audit data responsibly
  • Authored all UX copy — status labels, field names, placeholders, and supporting text — ensuring clarity and consistency throughout
  • Delivered handoff-ready specifications across three breakpoints, documenting every screen, state, condition, and interaction
  • Documented sorting and filtering patterns as reusable cross-platform guidelines in the design system
what I'd do differently

Designing a path forward for the training and audit feature

The decision to exclude training and audit information was driven by a legal constraint we didn't anticipate early enough in the process. In hindsight, I would have pushed to design a placeholder or forward-looking message within the UI — acknowledging that this capability was on the roadmap and setting expectations accordingly. Users who surfaced this need in testing had a legitimate and important use case, and leaving it completely unaddressed in the interface missed an opportunity to build trust and signal that their feedback had been heard.

© Sasha Gomon 2026
LinkedIn
Image Credit: Fortune Brands Innovations, Magnific