Skip to main content
Security

Sharing Rule

A Sharing Rule in Salesforce automatically extends record access to specific groups of users beyond what Organization-Wide Defaults and the role hierarchy provide.

Term Context

Category

Security

7 terms in this category

Related Terms

4

connected concepts

Glossary

66

total definitions

Sharing Rule Explained

Sharing rules are the primary mechanism for opening access when OWD is set to Private or Public Read Only. They come in two types: ownership-based sharing rules (share records owned by members of one group with another group) and criteria-based sharing rules (share records that match specific field values, regardless of owner). Access can be granted as Read Only or Read/Write. Target groups can be roles, roles and subordinates, public groups, territories, or queues.

Sharing rules are evaluated asynchronously and update the sharing table, an internal Salesforce table that tracks which users can access which records. In orgs with millions of records and complex sharing configurations, the sharing table can grow very large, which impacts performance on record access checks. Salesforce recommends keeping sharing rules under the per-object limit (typically 300 owner-based and 50 criteria-based per object for most editions). Clientell AI can visualize your sharing model, identify redundant rules, and optimize your configuration for performance.

Related Salesforce Terms

4 terms

Organization-Wide Defaults (OWD)

Security

Organization-Wide Defaults define the baseline record access level for each object, establishing the most restrictive sharing setting before other mechanisms open access.

Role Hierarchy

Administration

The Role Hierarchy in Salesforce controls record-level visibility by granting users access to records owned by anyone below them in the hierarchy tree.

Field-Level Security (FLS)

Security

Field-Level Security controls which users can see and edit specific fields on Salesforce objects, enforced at the profile and permission set level.

Profile

Administration

A Profile in Salesforce defines the baseline set of permissions, page layout assignments, and system settings that apply to every user assigned to it.

Learn More

Permission ManagementAI Salesforce Admin

More in Security

View all →

Field-Level Security (FLS)

Field-Level Security controls which users can see and edit specific fields on Salesforce objects, enforced at the profile and permission set level.

Organization-Wide Defaults (OWD)

Organization-Wide Defaults define the baseline record access level for each object, establishing the most restrictive sharing setting before other mechanisms open access.

Shield Platform Encryption

Shield Platform Encryption encrypts sensitive data at rest in Salesforce using tenant-specific encryption keys, protecting it beyond standard database-level encryption.

Connected App

A Connected App is a configuration framework that enables an external application to integrate with Salesforce using OAuth 2.0, SAML, or other standard protocols.

Getting Started

Ready to transform your Salesforce?

Join hundreds of teams using Clientell AI to automate workflows and boost productivity.

Start free trialTalk to Sales

Unlimited messages  ·  No credit card required

SOC 2
HIPAA
GDPR
Salesforce Partner