As a member of the Data Engineering team at an e-commerce company, you're overseeing a BigQuery dataset with user activity data. Another team requests access to this dataset, but you need to ensure they cannot accidentally delete any datasets. What are the recommended best practices to grant them access?