All backend church admin plugin functions do a check to see if the user is logged in and has permission to do what they are trying to do.
Permissions are set in one of two ways – by user level or by named people.
I use Church Admin>Settings>Roles and restrict backend functionality by user roles – the default for the plugin is administrator (actually manage_options).
Church Admin>Settings>Permissions sets the ability to do back end functions by people’s names (if their name in the directory is connected to a user account!). That is useful if you want say John Smith to be able to edit the directory, but not create posts. His user level in WP would be Subscriber, but you name him as able to do the directory backend.
It’s possible to lock yourself out of Church Admin if you use the permissions method and don’t name yourself. But a site admin can reset it!