Role-Based Access Control (RBAC) is a security mechanism that restricts system access to authorized users based on their roles within an organization. In this model, permissions are assigned to specific roles rather than individual users, making it easier to manage access rights. For example, an employee in the HR department may have different access rights than someone in the IT department. RBAC simplifies user management by allowing administrators to assign roles to users based on their job functions. This approach enhances security and compliance by ensuring that users only have access to the information necessary for their roles, reducing the risk of unauthorized access to sensitive data.