You can configure access to the Reporting module in CMS Desk -> Administration -> Permissions. Choose the permission matrix for Modules -> Reporting.
You can assign roles with the following permissions:
•Read - allows members of the role to view existing reports.
•Save reports - allows members of the role to save reports.
•Modify - allows members of the role to create, modify and delete reports.
•Destroy - allows members of the role to delete the version history of reporting objects.
•Edit SQL queries - allows members of the role to edit the queries used to retrieve data for reporting tools (graphs, tables and values). This permission is necessary to create new reports, but it can be a security risk, since it allows users to run queries against the website's database.
The Allow public users to see this report property, which can be found on the General tab when Editing () a report, indicates if the report can be displayed on the live site to non-authenticated (public) users. If it's set to false, the report and its graphs will be hidden from public users.