Granular security and sharing

Force.com provides a flexible, layered security framework that lets you share different data sets to different users. Application administrators can easy create profiles, roles, hierarchies and rules that are enforced in the user interface, reports, dashboards, search results, and the API.

Control who sees what

With sharing, you can ensure record-level access control for all custom objects as well as many standard objects (such as Account, Contact, Opportunity, and Case). Administrators can set organization-wide default sharing access levels and then grant additional access based on record ownership, role hierarchy, sharing rules, and manual sharing. Developers can write code that grants additional access programmatically.

Fine-grain control over sharing rules

To specify the objects and tabs a user can access, you can assign a profile. To specify the fields a user can access, you can use field-level security. To specify the individual records a user can view and edit, you can set your organization-wide defaults, define a role hierarchy, and create sharing rules.  

Learn more