(spfx) Can the granted permissins extend beyond the permissions of the currently logged in user?

I use the SharePoint Framework because I want to access Teams messages through the Graph API using the MSGraphClient.

I have two end goals:

• Building a webpart with delegated permissions
• Archive messages from a Teams channel using some kind of app permissions instead (?)

I know that the permission scopes have to be approved by an admin in the Sharepoint Admin center. However, I am a little confused regarding the actual scope of these permissions, bear in mind that I need to abide by the local data protection laws, so my app/webpart may not have access to just everything.

I would like to know whether the permissions granted to my MSGraphClient by the Sharepoint Admin can extend beyond the permissions of the currently logged in user. I cannot tell from the documentation in which cases the permissions are delegated and in which cases their are actual application permissions.

For example, if my MSGraphClient is granted the permission "ChannelMessage.Read.All", can the currently logged in user read "all" messages of all users, or only those messages that he actually has access to? Are all of the permissions granted through the Sharepoint Admin Center delegated? Appart from that, if I wanted to have access to messages regardless of the permissions of the currently logged in user, would I need to use an app token from Azure? If so, is it possible to restrict these permissions to only include reading privileges of specific Teams channels?