For most of our users...
- You will always have at least one admin. Chances are, most organisations will only have one user. That user will be admin.
- If you do have additional users, they will either be “Admin” or “Controller”.
Being blunt, a “controller” or “operator” can’t stuff things up. They can just view the data.
For our power users
Permissions are designed to allow you to decide who has the ability to view data, run reports, change settings, and administer users.
It is possible to have different permissions based on sites. This allows you to have a user who may be able to change settings on one site but only view results on another site. Why? Chances are, someone one day will want to do it. Personally, I think it was the programmer showing off.
If no explicit permissions are set for a User for a specific Site, they will inherit their permissions from the Organisation level.