Which of the following is true regarding the role configuration in Cornerstone?

The statement that roles are related to user permissions and actions within the system is accurate and highlights an essential aspect of role configuration in Cornerstone. In this context, roles define what users can view, modify, or interact with in the platform based on their designated responsibilities. This includes access to specific modules, functionalities, and data, ensuring that users have the appropriate permissions tailored to their job functions.

By establishing clear roles, organizations can implement robust security measures, streamline workflows, and ensure that users engage with the system in a manner that aligns with their specific needs. This structured approach to permissions is critical in maintaining data integrity and compliance within the system.

The other options do not align with the core functions of roles in Cornerstone. Roles are not limited to assignment within specific organizational units; rather, they can span across the entire system. They do not govern data retention policies, which involve different administrative tasks and compliance management. Lastly, while roles may have some bearing on reporting, their primary focus is on user access and permissions rather than serving solely for reporting purposes.