Control Access to Sensitive Data with Restriction Rules (Beta)

Secure your data and boost productivity by permitting your users to see only the records necessary for their job function. Create restriction rules to control which subset of records you allow specified groups of users to see. Restriction rules are available for custom objects, contracts, tasks, and events. You can create and manage restriction rules via the Tooling and Metadata APIs. They provide another layer of access control on top of your existing sharing settings and let you configure truly private visibility.

Where: This change applies to Lightning Experience in Enterprise, Performance, Unlimited, and Developer editions.



This feature is a Beta Service. Customer may opt to try such Beta Service in its sole discretion. Any use of the Beta Service is subject to the applicable Beta Services Terms provided at Agreements and Terms.

When: The timeline for the rollout of this feature is published in the Restriction Rules group in the Trailblazer Community.

Why: Without restriction rules, users with access to an account can see its contracts, tasks, and events, even when the organization-wide default is set to Private. For custom objects, users can see all detail records. Restriction rules let you configure truly private access for these objects.

How: For information on enabling this feature, contact Salesforce. You can create and modify restriction rules using the Tooling or Metadata API. See the Restriction Rules Developer Guide (Beta) for more information.