How do you manage user security, access control, and role-based permissions when designing a data warehouse for sensitive financial data?