We take security and performance in mind when configuring our stacks. Running the services using a separate user (non-root user) is a good practice. In this case, we use the daemon user/group to run the Apache's server. The daemon user is not a privileged user and we also configure the permissions in the server and the different applications to not to allow that user to modify the Apache's configuration.
Let us know if you have any questions or concerns about this configuration.