The Application Administrator (also called App Admin) can modify or create or delete anything within the company application that the application permits. It's the highlest level. Typically, the App Admin will set up the properties on the application, set up the configurable codes, any corporate addressing structure, add other App Admins or Operators to the application. The app admin will also set up any Physical layouts.

The Operator is the intermediate level of security. Usually, the operator is the health consultant, occupational nurse, gym instructor and so on. The operator will carry out the testing and spend time with the subject. The operator will also provide specific health recommendations and possibly generate and customise reports. The operator can search, create, modify subjects, physical assessments etc. Operators cannot access the administration menu and cannot configure the application. 

The subject is exactly that, the individual that is being tested. The subject can login to the system using a username and password like the other levels, although their access and functionality is severly limited. This will  change over time and it is anticipated that in a future iteration, the subject will be able to undertake much of the lifestyle assessment without the oeprator needing to be present.