Permissions are used to control access to the data at multiple levels. The possible permission levels are:
- No access
- Read-only access
- Full edit (read and edit) access
- Database administrator access
The permissions are assigned per user to logical segments of the data. For example a user may have different permission levels for program level data, project level data and accounting data. There is a lot of flexibility in defining the data segments and assignments.
Additionally, sensitive content my be blocked from read-only users that would normally have read access to it. For example, say a project has a place for Partner evaluations. The program manager can mark an evaluation document as restricted which would mean read-only users that would normally be able to read the document are blocked from reading it. These users can see that the document exists, but would not be allowed to read it.