Point well taken, Jacob. for now, i am the sole recipient of all reports run through RS, but i will close down what i need to before i allow others to run them.
Not to take away from what Ben is saying, but watch out with this. db_datareader grants select permissions to all tables and views in the database. For most environments this is not appropriate, especially if you are granting users access via their Windows logins. It's just asking for someone to steal your data - a least permissive model with only EXEC on reporting procs and minimal direct SELECT access to tables/views is generally better.