Developers should, at best, have read-only access to production databases. This greatly reduces the chances of making a mistake. Or read-access for their regular, day-to-day account, and higher perms for an 'admin' account only for making authorised changes.