If its writable for few users and read only for others, security will come into picture,
1. Have you check the Provisioning at HSS level and artifacts level security in planning?
2. Do you have nested groups or security is provided at parent level and directly too, if yes check the effective access.