Currently, staff-level users are able to delete orders. This creates a major operational and accounting risk because orders represent transaction history and financial records.

Staff users should only be able to:

View orders

Change order status

Add remarks or internal notes

Staff users should not be able to:

Delete orders

Modify financial values

Remove order history

Order deletion should be restricted to owner or admin roles only. This would improve audit integrity and prevent accidental data loss.