Role-Based Access Control
4.6 Role-Based Access Control
Reading 1
3 / 7
4.6 Role-Based Access Control
Role-based access control is the practice of assigning database permissions according to a user's responsibilities. It supports confidentiality, data integrity, and operational efficiency. In clinical research, access should not be granted based on convenience or seniority alone. It should be based on what the user needs to do for the study.
The principle of least privilege is central. A user should receive the minimum permissions needed to perform their duties. A data entry clerk may need to create and edit records but not export full datasets. A site coordinator may need to review site reports but not modify database design. A monitor may need read-only access for source verification and query review. A statistician may need approved exports but should not necessarily edit participant records. A data manager may need broad permissions, but those permissions should still be documented and governed.
Role-based access protects participants. If identifiers are visible to users who do not need them, confidentiality risk increases. If too many users can export data, the risk of uncontrolled copies increases. If users can delete records unnecessarily, traceability may be compromised. If staff share accounts, audit trails lose meaning because actions cannot be attributed to individuals.
Access control also supports quality. When users see only the forms relevant to their work, they are less likely to edit the wrong fields. When database design rights are limited, accidental changes are less likely. When exports are restricted, teams are encouraged to use approved datasets and documented release procedures.
Access should be reviewed periodically. Staff may leave the study, move to another site, or change responsibilities. Dormant accounts should be disabled. Shared accounts should not be used. Temporary access should have an end date. The data manager should maintain an access log showing who had access, what role they had, when access was granted, and when it was removed.
**Table 4.5: Example Role-Based Access Model**
| Role | Access needed | Access usually restricted |
|---|---|---|
| Data entry clerk | Create and edit assigned forms | Export, design changes, user management |
| Site coordinator | Edit records, review site reports, respond to queries | Full export, project setup changes |
| Monitor | View records, compare with source, review queries | Routine editing, design changes |
| Laboratory user | Enter or upload laboratory results | Non-laboratory instruments, identifiers not needed |
| Statistician | Export approved analysis datasets | Record editing, user rights management |
| Data manager | Configure project, manage users, run quality checks | Governed by SOPs and audit procedures |