Permissions roles etc will all depend on how you want to lock down access to the databases, only you know what the applications are doing to the database so only you can really decide what rights to give to users.

The main thing I would say if setup a backup routine for the newly created database(s) as that will be critical.