Here is a quite useful process !
This process will allow you to manage your other processes rights and the global policy !
With it , you will be able to define which users or which groups are able to start or read defined processes .
You will also be able to chose whether all your user can start processes by default or none of them can .
There may be some french bits remaining in the code / strings , please tell me so i can remove it.
Dependency : You need groovy-ldap if you want to apply rules to LDAP groups : http://directory.apache.org/api/groovy-ldap.html
( download here : http://directory.apache.org/api/1-download-groovy-ldap.html )
How to setup for LDAP :
Configure your LDAP connection strings in the Add rule to group form ( in the “group” data and the “Ok” action )
Let me know if you got any suggestion 
And don’t forget to vote if you like it !
Repository URL : http://community.bonitasoft.com/project/bonita-management-process