Which access control/authorisation system is in place?

Can Do includes two types of access control. One is technical and the other is content based.

Technical access is done by logging in or connecting to single sign-on systems. The communication is carried out via HTTPS.

In terms of content, different roles can be set up that determine access to all data. Users are assigned to these roles. Access to the data itself is controlled by assigning users to the appropriate roles.