Give the offline-first article a read to learn about the different options for syncing:
https://docs.mendix.com/refguide/offline-first
It sounds to me like you’ll first want to apply entity access rules in your domain model based on user role (admin, manager, user)
Then you might refine that by setting up some custom sync settings.
And finally, for certain objects you may only want to use selective sync, where you execute a microflow and it syncs X number of objects down to your device.