Definition

CE-CON Safety uses a role concept to make the administration of access rights efficient and clear. Instead of defining individual access rights for each user and each possible operation, these are grouped together in predefined roles. This system considerably simplifies the assignment of rights and ensures consistent application of safety guidelines.

Client roles	Project roles
The roles assigned at the client level provide a basic rights basis that applies to all projects within the client. These roles define the general access rights and responsibilities of users and are therefore critical to the security and integrity of all data within the client. It is important to carefully consider which users are granted rights at this level, as they have far-reaching implications for the client's overall data and resources.	In addition to client level, access rights can be defined and extended more precisely at project level. This enables more precise control over access rights in individual projects and allows specific roles and responsibilities to be defined that only apply to certain projects. For example, project managers can be givencomprehensive rights within their projects without having full access to all of the client's projects.

Client roles

Project roles

The roles assigned at the client level provide a basic rights basis that applies to all projects within the client. These roles define the general access rights and responsibilities of users and are therefore critical to the security and integrity of all data within the client. It is important to carefully consider which users are granted rights at this level, as they have far-reaching implications for the client's overall data and resources.

In addition to client level, access rights can be defined and extended more precisely at project level. This enables more precise control over access rights in individual projects and allows specific roles and responsibilities to be defined that only apply to certain projects. For example, project managers can be givencomprehensive rights within their projects without having full access to all of the client's projects.