Further, the data entry operator would have complete access to the database, including access to sensitive data, such as credit information, even though the data entry operator has no need for access to this sensitive information to enable the service.