quote:

---

I disagree especially for the sensitive access. Sooner or later that special person will change and having a role makes that more...

In production area with sensitive information, assigning rights/sensitive DB/ to anybody/group, user, administrator.../ except one special user/with stored procedures exec access and with embedded internal security/...