The Doctype User has level 0 permission completely removed for the role Employee. However, a user of such role (solely Employee) can still change profile picture clicking on the user’s icon on the top right corner and chosing the option “My Profile>Edit Profile”.