diff --git a/src/components/settings/service_categories/ServiceCategoryTable/ServiceCategoryTable.tsx b/src/components/settings/service_categories/ServiceCategoryTable/ServiceCategoryTable.tsx
index b64918d..5b0a385 100644
--- a/src/components/settings/service_categories/ServiceCategoryTable/ServiceCategoryTable.tsx
+++ b/src/components/settings/service_categories/ServiceCategoryTable/ServiceCategoryTable.tsx
@@ -83,9 +83,14 @@ export const ServiceCategoryTable = ({
     openEditServiceCategoryModal()
   }
 
-  const serviceCategoriesToShow = showArchived
-    ? serviceCategories
-    : serviceCategories.filter((serviceCategory) => serviceCategory.deletedAt === null)
+  const serviceCategoriesToShow = serviceCategories.filter((serviceCategory) => {
+    // Filter by archived status
+    if (!showArchived && serviceCategory.deletedAt !== null) return false
+
+    // Filter by view permission
+    const actions = resolvePolicy("service_category", userContext, serviceCategory)
+    return actions.includes("view")
+  })
 
   const canCreate = actions.includes("create")
 
diff --git a/src/components/settings/services/EditServiceModal/EditServiceModal.tsx b/src/components/settings/services/EditServiceModal/EditServiceModal.tsx
index b6a984c..9a630e6 100644
--- a/src/components/settings/services/EditServiceModal/EditServiceModal.tsx
+++ b/src/components/settings/services/EditServiceModal/EditServiceModal.tsx
@@ -21,6 +21,8 @@ type EditServiceModalProps = {
   service: ServiceWithRelations | null
   locations: LocationWithRelations[]
   categories: ServiceCategoryWithRelations[]
+  canEdit: boolean
+  canArchive: boolean
   updateService: (
     service: Partial<ServiceWithRelations>,
     prevService: Partial<ServiceWithRelations>
@@ -36,6 +38,8 @@ export const EditServiceModal = ({
   service,
   locations,
   categories,
+  canEdit,
+  canArchive,
   updateService,
   doesServiceCodeExist,
   revalidateTable,
@@ -112,7 +116,7 @@ export const EditServiceModal = ({
   if (!service || !formData || !previousService) return null
 
   const isArchived = service.deletedAt !== null
-  const isReadonly = isArchived
+  const isReadonly = isArchived || !canEdit
 
   const handleSave = async () => {
     if (formData && !isReadonly) {
@@ -147,13 +151,19 @@ export const EditServiceModal = ({
 
       <DialogBody>
         <form className="space-y-5">
-          {isReadonly && (
+          {!canEdit && (
             <div className="flex flex-col gap-1 rounded-md border-l-4 border-l-red-600 bg-red-50 p-4">
-              {isArchived && (
-                <p className="text-sm font-medium text-red-800">
-                  This service is archived and cannot be edited.
-                </p>
-              )}
+              <p className="text-sm font-medium text-red-800">
+                You do not have permission to edit this service.
+              </p>
+            </div>
+          )}
+
+          {isArchived && (
+            <div className="flex flex-col gap-1 rounded-md border-l-4 border-l-red-600 bg-red-50 p-4">
+              <p className="text-sm font-medium text-red-800">
+                This service is archived and cannot be edited.
+              </p>
             </div>
           )}
 
@@ -178,9 +188,11 @@ export const EditServiceModal = ({
         <button type="button" className="tertiary" onClick={onClose}>
           Cancel
         </button>
-        <button type="button" className="secondary danger" onClick={handleOpenArchive}>
-          {isArchived ? "Unarchive" : "Archive"}
-        </button>
+        {canArchive && (
+          <button type="button" className="secondary danger" onClick={handleOpenArchive}>
+            {isArchived ? "Unarchive" : "Archive"}
+          </button>
+        )}
         <button
           type="button"
           className="primary"
diff --git a/src/components/settings/services/ServiceTable/ServiceTable.tsx b/src/components/settings/services/ServiceTable/ServiceTable.tsx
index 653232f..25a7e56 100644
--- a/src/components/settings/services/ServiceTable/ServiceTable.tsx
+++ b/src/components/settings/services/ServiceTable/ServiceTable.tsx
@@ -1,18 +1,22 @@
 "use client"
 
-import { useState } from "react"
+import { useEffect, useMemo, useState } from "react"
 import { DataTable } from "@/components/common/datatable"
 import { Switch } from "@/components/common/switch"
-import { useDialog } from "@/hooks"
+import { useAuth, useDialog } from "@/hooks"
 import type { LocationWithRelations } from "@/lib/prisma/location/types"
 import type { ServiceWithRelations } from "@/lib/prisma/service/types"
 import type { ServiceCategoryWithRelations } from "@/lib/prisma/service_category/types"
+import type { StaffUserWithRelations } from "@/lib/prisma/staff_user/types"
+import { resolvePolicy } from "@/utils/policies/resolvePolicy"
+import type { UserContext } from "@/utils/policies/types"
 import { ConfirmArchiveServiceModal } from "../ConfirmArchiveServiceModal"
 import { CreateServiceModal } from "../CreateServiceModal"
 import { EditServiceModal } from "../EditServiceModal"
 import { columns } from "./columns"
 
 export type ServiceTableProps = {
+  currentUser: StaffUserWithRelations | null
   services: ServiceWithRelations[]
   locations: LocationWithRelations[]
   categories: ServiceCategoryWithRelations[]
@@ -26,6 +30,7 @@ export type ServiceTableProps = {
 }
 
 export const ServiceTable = ({
+  currentUser,
   services,
   locations,
   categories,
@@ -34,6 +39,7 @@ export const ServiceTable = ({
   doesServiceCodeExist,
   revalidateTable,
 }: ServiceTableProps) => {
+  const { role, idir_user_guid } = useAuth()
   const {
     open: editServiceModalOpen,
     openDialog: openEditServiceModal,
@@ -50,24 +56,61 @@ export const ServiceTable = ({
     closeDialog: closeConfirmArchiveServiceModal,
   } = useDialog()
 
+  const userContext = useMemo<UserContext>(
+    () => ({
+      staff_user_id: idir_user_guid ?? null,
+      role,
+      location_code: currentUser?.locationCode ?? null,
+    }),
+    [idir_user_guid, role, currentUser?.locationCode]
+  )
+
+  const actions = resolvePolicy("service", userContext)
+
   const [showArchived, setShowArchived] = useState<boolean>(false)
   const [selectedService, setSelectedService] = useState<ServiceWithRelations | null>(null)
+  const [canEditSelectedService, setCanEditSelectedService] = useState<boolean>(false)
+  const [canArchiveSelectedService, setCanArchiveSelectedService] = useState<boolean>(false)
+
+  // Determine if the current user can edit/archive the selected service whenever either changes
+  useEffect(() => {
+    if (selectedService) {
+      const actions = resolvePolicy("service", userContext, selectedService)
+      setCanEditSelectedService(actions.includes("edit"))
+      setCanArchiveSelectedService(actions.includes("archive"))
+    } else {
+      setCanEditSelectedService(false)
+      setCanArchiveSelectedService(false)
+    }
+  }, [selectedService, userContext])
 
   const handleRowClick = (service: ServiceWithRelations) => {
     setSelectedService(service)
     openEditServiceModal()
   }
 
-  const servicesToShow = showArchived
-    ? services
-    : services.filter((service) => service.deletedAt === null)
+  const servicesToShow = services.filter((service) => {
+    // Filter by archived status
+    if (!showArchived && service.deletedAt !== null) return false
+
+    // Filter by view permission
+    const actions = resolvePolicy("service", userContext, service)
+    return actions.includes("view")
+  })
+
+  const canCreate = actions.includes("create")
 
   return (
     <>
       <div className="flex items-center justify-end mb-3 gap-4">
         <h3 className="self-center text-sm font-medium text-gray-700">Show Archived</h3>
         <Switch checked={showArchived} onChange={setShowArchived} />
-        <button type="button" onClick={openCreateServiceModal} className="primary">
+        <button
+          type="button"
+          onClick={openCreateServiceModal}
+          className="primary"
+          disabled={!canCreate}
+        >
           + Create
         </button>
       </div>
@@ -92,6 +135,8 @@ export const ServiceTable = ({
         service={selectedService}
         locations={locations}
         categories={categories}
+        canEdit={canEditSelectedService}
+        canArchive={canArchiveSelectedService}
         updateService={updateService}
         doesServiceCodeExist={doesServiceCodeExist}
         revalidateTable={revalidateTable}
diff --git a/src/utils/policies/policies.ts b/src/utils/policies/policies.ts
index 81bc9f9..3ef447d 100644
--- a/src/utils/policies/policies.ts
+++ b/src/utils/policies/policies.ts
@@ -1,4 +1,5 @@
 import { LocationPolicy } from "./resources/location"
+import { ServicePolicy } from "./resources/service"
 import { ServiceCategoryPolicy } from "./resources/service_category"
 import { StaffUserPolicy } from "./resources/staff_user"
 import type { Policies } from "./types"
@@ -21,5 +22,6 @@ import type { Policies } from "./types"
 export const policies: Policies = {
   staff_user: StaffUserPolicy,
   location: LocationPolicy,
+  service: ServicePolicy,
   service_category: ServiceCategoryPolicy,
 }
diff --git a/src/utils/policies/resources/service.ts b/src/utils/policies/resources/service.ts
new file mode 100644
index 0000000..d06e22e
--- /dev/null
+++ b/src/utils/policies/resources/service.ts
@@ -0,0 +1,20 @@
+import type { Policy } from "../types"
+
+export const ServicePolicy: Policy = (user_context, _data) => {
+  const { role } = user_context
+  const actions = new Set<string>()
+
+  // View permissions
+  actions.add("view") // Anyone can view services
+
+  // Create permissions
+  if (role === "Administrator") actions.add("create") // Administrators can create services
+
+  // Edit permissions
+  if (role === "Administrator") actions.add("edit") // Administrators can edit all records
+
+  // Archive permissions
+  if (role === "Administrator") actions.add("archive") // Administrators can archive all records
+
+  return Array.from(actions)
+}