At minimum, role permissions so certain objects can be restricted to admin.

Ideally, user permissions to control object visibility by user.