Access control is an essential element of security that determines who is allowed to access certain data, apps, and resources—and in what circumstances. In the same way that keys and preapproved guest lists protect physical spaces, access control policies protect digital spaces. In other words, they let the right people in and keep the wrong people out. Access control policies rely heavily on techniques like authentication and authorization, which allow organizations to explicitly verify both that users are who they say they are and that these users are granted the appropriate level of access based on context such as device, location, role, and much more.

Access control keeps confidential information—such as customer data and intellectual property—from being stolen by bad actors or other unauthorized users. It also reduces the risk of data exfiltration by employees and keeps web-based threats at bay. Rather than manage permissions manually, most security-driven organizations lean on identity and access management solutions to implement access control policies.

Partitions

• Everything in BizVR is stored in partitions
• Partitions are shared spaces where users can develop decisions.
• Partitions are managed by the system administrator (CREATE, EDIT, RENAME, DELETE, BACKUP, RESTORE,SHARE)
• Within a partition a user can create a workspace.

Workspaces

• A workspace can be created and managed by a user in any partition they have access to. (CREATE, EDIT, RENAME, DELETE, BACKUP, RESTORE, SHARE)
• The user is the OWNER of that workspace and everything in it even if its created by other users who have been give access.
• Only READ, WRITE, VALIDATE, EXECUTE access to a workspace may be granted to others by the owner
• This workspace is only visible to the user that created it (unless they explicitly share that workspace)
• Within a workspace authorized users may CREATE,DELETE,UPDATE,RENAME,VALIDATE,EXPORT,IMPORT projects

Projects

A project is grouping of related decisions