Effective on-chain governance begins with a clear definition of roles and their associated permissions. The core roles typically include token holders (the electorate), delegates (representatives who vote on behalf of others), guardians or a multisig (for emergency security actions), and core developers (responsible for implementing proposals). Each role requires explicit on-chain permissions, such as the ability to create proposals, vote, execute passed proposals, or veto malicious actions. Smart contracts like OpenZeppelin's Governor and TimelockController provide modular building blocks to encode these permissions.
LABS
Guides
How to Plan Governance Roles and Responsibilities
A technical guide for developers on designing and implementing role-based access control for on-chain governance systems, including smart contract patterns and security considerations.
Chainscore © 2026
introduction
DESIGN PATTERNS
How to Plan Governance Roles and Responsibilities
A structured approach to designing the roles, permissions, and processes for an effective on-chain governance system.
Responsibilities must be scoped to mitigate centralization and manage risk. For example, a common pattern is to separate proposal execution from voting. A successful vote may only schedule an action in a Timelock, introducing a mandatory delay during which token holders can exit the system if they disagree. High-risk actions, like upgrading a protocol's core logic, often require a higher quorum and approval threshold. The Compound Governance system exemplifies this, where proposals execute only after a 2-day timelock, giving the community a final safety check.
When planning, map each responsibility to a specific smart contract function call and assign the minimum required access. Use role-based access control (RBAC) systems, such as those in @openzeppelin/contracts/access, to enforce this. For instance, you might configure a Proposer role that can queue actions in the timelock, an Executor role to finalize them, and a Canceller role reserved for a security council. This principle of least privilege is critical for security. Always document the intended workflow, including proposal lifecycle stages (Submit, Vote, Queue, Execute) and the expected time delays for each.
Finally, consider the human processes that support the on-chain rules. Define clear guidelines for delegates regarding voting rationale and communication. Establish off-chain forums, like Commonwealth or Discord channels, for discussion before proposals reach the chain. Plan for role succession; for example, how are new guardians appointed if keys are compromised? A robust plan integrates both the immutable code and the social layer, ensuring the system remains adaptable and resilient as the protocol evolves.
prerequisites
PREREQUISITES AND CORE CONCEPTS
How to Plan Governance Roles and Responsibilities
Effective decentralized governance requires a clear framework of roles and responsibilities. This guide outlines the core components for designing a robust governance system for your DAO or protocol.
Governance planning starts with defining the actors in your system. The most common roles include token holders (who vote on proposals), delegates (who vote on behalf of others), core contributors (who execute decisions), and a security council or multisig for emergency actions. For example, Uniswap governance involves UNI token holders, delegates, and the Uniswap Grants Program committee. Clearly delineating these roles prevents overlap and establishes accountability from the outset.
Next, map out the decision-making lifecycle and assign responsibilities at each stage. A typical flow includes: proposal creation (anyone or delegated bodies), temperature checks (forum discussion), formal on-chain voting (token holders/delegates), and execution (core team or autonomous smart contracts). In Compound Governance, any address with 65,000 COMP can create a proposal, which then goes through a 2-day voting period followed by a 2-day timelock before execution. Defining who can act at each step is critical.
Formalize these rules in your governance smart contracts and off-chain documentation. The on-chain contracts encode the hard rules: voting thresholds, proposal submission requirements, and timelocks. The off-chain documentation, often a Constitution or Governance Framework, describes the softer processes: code of conduct, delegation guidelines, and dispute resolution. MakerDAO's Maker Improvement Proposals (MIPs) framework is a canonical example of a comprehensive governance constitution that complements its on-chain voting system.
Consider incentive structures to ensure participation and alignment. Passive token holders may delegate voting power to knowledgeable delegates. Protocols like Curve Finance use vote-escrowed tokens (veCRV) to reward long-term aligned stakeholders with greater voting power. You must decide if participation is purely altruistic or if there are direct rewards (e.g., gas reimbursements, protocol fee sharing) for active governors. Misaligned incentives can lead to voter apathy or governance attacks.
Finally, plan for contingencies and upgrades. Your governance system itself will need to evolve. Establish a clear process for amending governance parameters or migrating to a new contract suite. This often requires a higher voting threshold or a multi-step process. Include a fallback mechanism, such as a trusted multisig with a clear mandate, to handle critical security vulnerabilities that cannot wait for a full governance cycle. Balancing decentralization with operational resilience is a key design challenge.
key-concepts-text
GOVERNANCE FRAMEWORK
How to Plan Governance Roles and Responsibilities
A structured approach to defining and assigning roles is critical for effective DAO operations. This guide outlines the core responsibilities and planning process for governance participants.
Effective decentralized governance requires a clear delineation of roles to prevent bottlenecks and ensure accountability. Core roles typically include Token Holders (who vote on proposals), Delegates (who represent voting power), Core Contributors (who execute approved work), and Stewards or Multisig Signers (who manage treasury funds and critical upgrades). Each role carries distinct responsibilities and requires different levels of commitment and expertise. Defining these upfront prevents confusion and aligns contributor expectations with the DAO's operational needs.
Start by mapping your governance lifecycle to required functions. For a typical proposal flow, you need: Proposers to draft ideas, Sponsors to stake funds for on-chain proposals (common in Compound or Uniswap), Voters/Delegates to signal approval, and Executors to implement passed proposals. Technical roles like Smart Contract Auditors and Protocol Engineers are needed for code changes, while Community Moderators and Content Writers handle communication. Document each role's purpose, required skills, time commitment, and compensation structure in your governance docs or handbook.
For on-chain clarity, roles are often enforced via smart contract permissions. A common pattern uses OpenZeppelin's AccessControl or a custom governor contract. For example, you might assign a PROPOSER_ROLE to allowed addresses and a EXECUTOR_ROLE to a multisig wallet. Below is a simplified Solidity snippet illustrating role assignment:
solidity// Using OpenZeppelin AccessControl import "@openzeppelin/contracts/access/AccessControl.sol"; contract DAOGoverance is AccessControl { bytes32 public constant PROPOSER_ROLE = keccak256("PROPOSER_ROLE"); bytes32 public constant EXECUTOR_ROLE = keccak256("EXECUTOR_ROLE"); constructor() { _grantRole(DEFAULT_ADMIN_ROLE, msg.sender); _grantRole(PROPOSER_ROLE, msg.sender); // Initial proposer _grantRole(EXECUTOR_ROLE, 0x...); // Multisig address } }
Compensation and incentives must be aligned with responsibilities. Core contributors working full-time may receive stablecoin salaries and token vesting, while delegates might earn rewards from platforms like Snapshot's delegation pools or direct protocol incentives (e.g., Optimism's Citizen House). Clearly define how each role is rewarded, the process for requesting payment (e.g., via a DAO payroll tool like Sablier or Superfluid), and key performance indicators. Transparency here reduces governance overhead for payment disputes and helps attract qualified participants.
Finally, establish processes for role onboarding, offboarding, and conflict resolution. Use on-chain voting for role grants to high-trust positions (e.g., multisig signers) and off-chain sentiment checks (like Discord polls) for community moderator roles. Implement a clear grievance or appeal process, potentially through a dedicated Council or Adjudication Committee. Regularly review role effectiveness and be prepared to iterate; successful DAOs like Aave and Compound have updated their governance charts multiple times as their protocols evolved.
common-governance-roles
FRAMEWORK
Common Governance Role Archetypes
Effective DAO governance requires clearly defined roles. These archetypes form the foundation for structuring contributor responsibilities and decision-making authority.
01
Core Contributor
Core Contributors are the primary builders and maintainers of the protocol. They are typically full-time, compensated members responsible for technical development, operations, and day-to-day execution.
- Responsibilities: Protocol upgrades, smart contract maintenance, technical roadmap execution.
- Examples: Lead developers at Uniswap Labs, engineering teams at Aave.
- Authority: High execution power within their domain, but major changes often require broader governance approval.
02
Delegates / Representatives
Delegates are token holders elected by the community to vote on their behalf. They provide informed voting, reduce voter apathy, and bring expertise to complex proposals.
- Responsibilities: Research proposals, vote conscientiously, communicate reasoning to delegators.
- Examples: Recognized delegates in Compound or Uniswap governance.
- Key Metric: They often manage voting power representing millions to billions in delegated tokens.
03
Multisig Signer
Multisig Signers hold one of the private keys required to execute on-chain transactions from a DAO's treasury or admin contracts. They are a critical security and operational layer.
- Responsibilities: Review and co-sign executable transactions for treasury payouts, parameter changes, or contract upgrades.
- Composition: Often a group of 5-9 trusted community members and core contributors.
- Security Model: Requires a threshold (e.g., 5/9) of signatures, preventing single points of failure.
04
Working Group Lead
Working Group Leads oversee specific, ongoing initiatives like grants, marketing, or community development. They operate with a budget and mandate from the broader DAO.
- Responsibilities: Manage a sub-group, execute on a specific operational vertical, report on budget and KPIs.
- Examples: Grants committee leads in MakerDAO, Ecosystem teams in Optimism's Governance.
- Structure: Provides scalability by decentralizing operational execution away from a central core team.
05
Governance Facilitator
Governance Facilitators are process managers who ensure governance runs smoothly. They are neutral parties focused on procedure, not policy outcomes.
- Responsibilities: Schedule votes, moderate forums, enforce proposal standards, and manage governance timelines.
- Examples: Governance facilitators in MakerDAO's Endgame model.
- Value: They reduce friction, maintain transparency, and help scale decentralized decision-making.
06
Token Holder / Voter
The foundational role. Token Holders have the ultimate sovereignty to approve or reject proposals. Active participation is often low, leading to delegation.
- Rights: Create proposals (if above threshold), vote on all governance matters, delegate voting power.
- Challenge: Voter apathy; major protocols often see <10% of circulating tokens used in typical votes.
- Design Implication: Governance systems must incentivize informed participation or enable efficient delegation.
COMMON ARCHETYPES
Governance Role Permission Matrix
A comparison of typical governance role archetypes and their associated permissions, from core developers to passive token holders.
| Permission / Capability | Core Developer | Active Delegate | Token Holder | Security Council |
|---|---|---|---|---|
Submit protocol upgrade proposals | ||||
Vote on on-chain proposals | ||||
Execute approved upgrades (timelock) | ||||
Adjust protocol parameters (e.g., fees) | ||||
Pause the system in an emergency | ||||
Manage treasury multisig signer set | ||||
Delegate voting power to another address | ||||
Create off-chain signaling posts |
implementation-patterns
SMART CONTRACT DESIGN
How to Plan Governance Roles and Responsibilities
A structured approach to defining and implementing access control and decision-making logic in on-chain governance systems.
Effective on-chain governance begins with a clear separation of roles. A common pattern involves three core actors: proposers, voters, and executors. Proposers submit actions for community approval, such as parameter changes or treasury spends. Voters, typically token holders or delegated representatives, cast votes to accept or reject proposals. Executors are authorized addresses that carry out approved actions. This separation, enforced via smart contract require statements, creates checks and balances and is foundational to systems like Compound's Governor Bravo.
Responsibilities must be codified with precise permissions. Use role-based access control libraries like OpenZeppelin's AccessControl to manage these permissions gas-efficiently. For example, you might grant a PROPOSER_ROLE the ability to queue a proposal, a VOTER_ROLE (often derived from a token balance snapshot) the ability to castVote, and an EXECUTOR_ROLE the ability to execute. Critical actions, like upgrading the contract itself, should be gated behind a timelock contract. This introduces a mandatory delay between proposal approval and execution, giving users a final window to exit the system if they disagree with the action.
When designing voting logic, specify the voting period, quorum requirements, and vote threshold. A quorum ensures a minimum level of participation is required for a vote to be valid, preventing a small, active group from making decisions for a passive majority. Thresholds define the percentage of for votes needed to pass, which can be a simple majority (e.g., >50%) or a supermajority (e.g., >66%). These values are not static; the system should allow them to be updated via a governance proposal itself, ensuring the DAO can adapt its own rules.
Consider implementing a delegation mechanism to improve participation and scalability. Instead of requiring every token holder to vote directly, delegation allows users to assign their voting power to a representative who votes on their behalf. This is central to the veToken (vote-escrowed token) model used by protocols like Curve Finance, where locking tokens for longer periods grants greater voting weight. Smart contracts must carefully manage delegation state to prevent double-counting votes and ensure accurate power representation during snapshotting.
Finally, plan for failure modes and edge cases. What happens if a proposal's execution fails due to insufficient gas or a reverted transaction? The contract should allow it to be canceled by a guardian or admin role. How are emergency actions handled? A multisig wallet controlled by trusted community members can be granted a separate EMERGENCY_ROLE with limited, time-bound powers to pause the system or address critical bugs, as seen in many DeFi protocols. Documenting these roles and their exact capabilities in the contract's NatSpec comments is crucial for transparency and security audits.
security-considerations
GOVERNANCE
Security Considerations and Best Practices
A secure governance framework is the foundation of a resilient DAO or protocol. These guides cover the critical design patterns and operational checks for planning roles and responsibilities.
04
Contingency Planning and Emergency Powers
Plan for protocol emergencies, such as critical bugs or governance attacks. Your framework should define:
- Emergency pause mechanisms: A trusted role or multisig can halt specific contract functions.
- Escalation procedures: Clear steps for identifying a crisis and activating emergency powers.
- Sunset clauses: Automatic expiration of emergency powers after a fixed period (e.g., 6 months) to prevent centralization.
Document these procedures off-chain and test them via simulations to ensure they work under stress.
06
Auditing and Transparency Requirements
Governance contracts control the protocol's core. They require rigorous scrutiny.
- Pre-deployment audits: Engage multiple reputable firms (e.g., Trail of Bits, OpenZeppelin, Quantstamp) to audit all governance and upgrade logic.
- Public documentation: Publish a clear governance portal explaining roles, proposal process, and smart contract addresses.
- Continuous monitoring: Use tools like Tenderly or Forta to monitor for unusual proposal or execution activity.
Transparency in audits and processes is non-negotiable for maintaining community trust.
GOVERNANCE DESIGN
Frequently Asked Questions
Common questions and clarifications for developers and architects designing on-chain governance systems.
In on-chain governance, a proposal is a data structure containing the proposed action (e.g., a target address and calldata). An execution contract (or timelock) is the smart contract that actually performs the action after a successful vote.
Key Distinction:
- The proposal is the "what"—it defines the intent.
- The execution contract is the "how"—it safely enacts the intent after a delay.
This separation is a critical security pattern. It prevents a malicious proposal from executing instantly and allows for a review period (a timelock) where users can exit the system if they disagree with the passed proposal. Protocols like Compound and Uniswap use this model.
resource-links
GUIDES
Resources and Further Reading
These resources provide concrete frameworks, smart contract implementations, and real DAO examples to help teams define governance roles, permissions, and accountability. Each card focuses on a different layer of governance design, from onchain execution to social processes.
conclusion
IMPLEMENTING YOUR FRAMEWORK
Conclusion and Next Steps
A well-defined governance framework is a living system. This section outlines how to operationalize your plan and evolve it over time.
Effective governance is not a one-time setup but an ongoing process of execution and iteration. Begin by deploying your smart contracts with the finalized parameters for roles, permissions, and voting mechanisms. Use a testnet like Sepolia or a local fork with tools like Foundry or Hardhat to simulate proposal lifecycles and role interactions before mainnet launch. Document the entire process, from proposal submission to execution, creating a clear on-chain playbook for your community. This initial documentation is critical for user onboarding and establishing trust through transparency.
After launch, your primary focus shifts to active facilitation and measurement. Designate community stewards to guide early proposal discussions, educate new members on the governance process, and ensure technical proposals are properly formatted. Simultaneously, track key metrics: voter participation rates, proposal execution success/failure, delegation patterns, and gas costs for governance actions. Tools like Tally, Boardroom, or custom subgraph queries on The Graph can automate this data collection. This quantitative feedback is essential for identifying friction points.
Plan for iterative upgrades based on collected data and community feedback. Common post-launch adjustments include modifying proposal thresholds, adjusting voting periods for different proposal types, or adding new specialized roles (e.g., a grants committee). All such changes must themselves follow the established governance process, demonstrating the system's ability to self-improve. For major upgrades, consider using a time-locked executor contract or a multisig with a sunset clause to ensure safe migration paths.
To deepen your understanding, explore established governance models in production. Analyze how Compound Governance handles delegate incentives, how Uniswap manages its treasury and protocol upgrades via its decentralized process, or how Optimism's Citizen House and Token House structure a bicameral system. The Governor Bravo contract standard from Compound is a foundational codebase many DAOs fork and modify. Reviewing these real-world implementations provides concrete patterns and anti-patterns for your own system's evolution.
Your next practical steps should be: 1) Finalize and audit all governance contracts, 2) Create comprehensive documentation and tutorial content for your community, 3) Run a structured testnet governance simulation with key stakeholders, and 4) Establish clear channels for continuous feedback (e.g., dedicated forum categories, weekly governance calls). Remember, the most resilient DAOs are those whose governance can adaptively scale with their protocol's complexity and community growth.