In the current implementation (once again, merely a strawman implementation!), the way permissions are handled is:
- "platform" user can create new Data Credit and Data Debit accounts
- every account can post data into the HAT (i.e. Data Credit is not enforced)
- every account that has requested a data debit (and has had it approved) can access that specific data debit
- "owner" can access everything
For the future, perhaps it is best to assume that a Data Debit has a superset of rights of a Data Credit, and Platform still merely has access to managing those users as well as have Data Debit rights to avoid the need for creating many users. It depends, however, on how HAT Platform Providers want to manage other applications and what role they want to play in the app market; potentially the Platform account will go away altogether.