Answer:
Authorization levels (privileges) need to be set for the users in the company.
Step-by-step explanation:
Users need to be classified according to their departments and their position. Each group should see only related data, so their authorizations need to be done accordingly.
Also managers and staff should have different levels of reach to the data. Thus their privileges should set accordingly.