End-user Access Controls for data in PowerBI reports

If we create a report in PowerBI that connects to data in Foundry, what access controls apply? From the docs it looks like reports inherit the rights of the creator and not the user browsing the report. We want to ensure that users don’t see data that they shouldn’t even if the report creator has broader permissions than they do.