There are three User roles in my application.
ADMIN, SUPERVISOR, and STAFF.
SUPERVISOR" manages multiple “STAFF”.
A “STAFF” can be associated with multiple “SUPERVISORs”.
Only the Current User or the SUPERVISOR that manages the Current User can view the data assigned to a “STAFF”.
In this case, how should I set up the database and Privacy Rules?