Salesforce Record Level Security

Record Level Security in Salesforce determines which individual records users can view and edit in each object they have access to in their profile.

The permission on a record is always evaluated according to a combination of object, field, and record-level security permission. When object- versus record-level permissions conflict, the most restrictive settings win.

To implement it the administrator need to answer the following questions:

• Should the users have open access to every record or a subset?
• If it’s a subset then what rules should determine whether the user can access them?

Salesforce provides 4 ways to implement it:

• Organization-Wide Default
• Role Hierarchy
• Sharing Rules
• Manual Sharing