Org-Wide Visibility
The Data Share provides org-wide visibility into your Affinity data. Unlike the Affinity
API, which enforces per-user access controls and permissions, the Data Share bypasses
application-level ACLs entirely.
This means that all organization data is visible to anyone with access to the Snowflake
share — regardless of role-based access restrictions configured within Affinity.
Grant access to the Snowflake share only to users who are authorized to view all
organization data. There are no per-user or per-role visibility filters applied at the
share level.
What This Means in Practice
- All records are included: Persons, companies, opportunities, list entries, and
associations are all visible in the share regardless of Affinity-level permissions.
- Custom field values are included: The
custom_fields JSON column on entity tables
contains all custom field values, including fields that may be restricted in the
Affinity UI.
- No row-level security: Data Share views expose the full dataset. With Snowflake, if you need
to restrict access, apply Snowflake-native row access policies or control share access
at the account/role level.
