Control Center Data Privacy Best Practices



I'm interested in hearing from anyone using Control Center with multiple departments/divisions, and how you're applying data privacy best practices.

If I understand it correctly, the designated lead has to be the owner of the blueprints, the workspace they live in, the intake and summary sheet, and at least have Admin access to the workspace where the projects will be provisioned. We have a dedicated license for this purpose.

We have multiple departments and divisions that want to use Control Center. However, I'm not comfortable sharing the login for the lead account to multiple people. I'm interested in hearing how others have handled this, or if my understanding is wrong?