An access control method that assigns permissions to users based on their roles within an organization.