diff --git a/doc/source/creators.rst b/doc/source/creators.rst
index bd037b0..fd04a51 100644
--- a/doc/source/creators.rst
+++ b/doc/source/creators.rst
@@ -121,6 +121,33 @@ and add "openstackci" in the "User Name" field, set the role to
    :height: 476
    :width: 800
 
+Give OpenDev Exclusive Permission to Publish Releases
+=====================================================
+
+In some cases, such as OpenStack governed projects, maintainers may want to
+give exclusive access to the package to the "openstackci" user. This ensures
+releases are always created by automation and not by humans.
+
+Update the roles for your project so the "openstackci" user has "Owner"
+permissions. Visit
+``https://pypi.org/manage/project/<projectname>/collaboration/``
+and add "openstackci" in the "User Name" field, set the role to
+"Owner", and click "Add Role".
+
+.. image:: images/pypi-role-maintenance.png
+   :height: 476
+   :width: 800
+
+After ensuring the "openstackci" user has owner access, you should also
+consider removing any remaining users, including your own, from the project.
+This will prevent accidental releases from being made and prevents compromise
+of the project if a your user account is compromised. You do this by clicking
+the remove button beside your username in the list.
+
+.. image:: images/pypi-role-remove.png
+   :height: 476
+   :width: 800
+
 Adding the Project to the CI System
 ===================================
 
diff --git a/doc/source/images/pypi-role-remove.png b/doc/source/images/pypi-role-remove.png
new file mode 100644
index 0000000..7458eb3
Binary files /dev/null and b/doc/source/images/pypi-role-remove.png differ