To access the datas internally, there are many Access Services for different kind of datas.

• Access Token (AccessTokenAccess)
• Api Key (Api Key Access)
• Blob (BlobAccess)
• Event (EventAccess)
• Group (GroupAccess)
• Group User (GroupUserAccess)
• Language (LanguageAccess)
• Node (NodeAccess)
• Node Type (NodeTypeAccess)
• Pipeline (PipelineAccess)
• Relation (RelationAccess)
• Setting (SettingAccess)
• User (UserAccess)
• User Type (UserTypeAccess)

All these "access" classes wrapping the repositories and add some functionality like permission checking and filling up complex datas. 

Sometimes it could be a good solution to disable permission checks on some code. The PermissionDisabledContextSwitcher help here.