The role based security model in Dynamics CRM is a matrix of privileges (actions) and access levels for various entities.
For example consider the default Sales Manager security role. As shown above for the Account entity Read, Wirte, Append, Append To and Share privileges (actions) can be performed at the Organization level. Create,Delete and Assign can be performed at the Business Unit level.
The following tables summarize the various privileges and access levels applicable to Dynamics CRM platform
In addition to the above each Security Role includes miscellaneous privileges that relate to application features globally.