Refund processing should be its own separate security permission setting. I want my customer service representatives to be able to generate receipts for transactions if a donor calls to say they didn't receive their autoresponder. But I do not want these same representatives to have the ability to process refunds. This is a big security risk. Currently, the ability to process refunds is grouped with being able to generate receipts under a blanke "Change Transactions" permission, so I am unable to offer the receipt functionality to my customer service representatives.