agologum/api/src/Models/Permissions.cs

// this is a static data model; it doesnt exist in a database (yet)
// lol no dynamic permissions would mean endpoint authorization gates need to be dynamic too

public static class Permission {

    public const string SensitiveData_Read = "SensitiveData.Read";
    public const string SensitiveData_Modify = "SensitiveData.Modify";

}