Thank you for your replies and guidance, I am new to this. I would not know how to achieve this myself. I do understand some things but I’m still learning.
I was imaging a filing system protected by a private key which gives full access rights i.e. "Admin Rights’ then public keys generated from this private key can be assign permission, groups, levels etc and associated with a person to access to the limitations set
If you imagine each private key as say a hard drive then folders can be created and files stored and public keys generated from each hard drive like private key can be set to public, limited to a group, signal person and permissions like read, write, copy, delete and share etc