# User roles are validated
Check IDAPP_0015
CategorySecurity
Summary

AppControl allows you to define a data policy for your application that validates the user roles defined in your Mendix application. This check verifies that all user roles have been reviewed and validated, and that each role has been configured with the required settings — a user role type, a maximum data access level, and a confirmation of whether the role is permitted to access personal data belonging to other users.

Validating user roles confirms that you have reviewed the purpose and privileges of each role in your application and that the configuration aligns with your intended security posture.

OptionsThere are no options for this check.
PassAll user roles in the application have been validated and all required settings have been configured.
FailOne or more user roles have not yet been validated, or one or more required settings are missing. Navigate to the data policy for this application and open the User Roles tab. Select any role showing a warning icon, complete the required settings, and click Mark as validated.
--- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.bluestorm.io/checks/app/app_0015.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.