Org-Wide Visibility
The Data Share provides org-wide visibility into your Affinity data. Unlike the Affinity
API, which enforces per-user access controls and permissions, the Data Share bypasses
application-level ACLs entirely.
This means that all organization data is visible to anyone with access to the share —
regardless of role-based access restrictions configured within Affinity.
Grant access to the share only to users who are authorized to view all organization data.
There are no per-user or per-role visibility filters applied at the share level.
What This Means in Practice
- All records are included: Persons, companies, opportunities, list entries, and
associations are all visible in the share regardless of Affinity-level permissions.
- Custom field values are included: The
custom_fields JSON column on entity tables
contains all custom field values, including fields that may be restricted in the
Affinity UI.
- No row-level security: Data Share views expose the full dataset. If you need to restrict
access, apply platform-native access controls — Snowflake row access policies or Unity Catalog
table ACLs on Databricks — or control share access at the account/role level.