This is coming up from an ISO 27000 audit point - who exists and what do they have access to, and can we verify this. I see an export button but this does not include users or what they are given. Perhaps this could be done via the API somehow? Thanks, James