Data and its security is a very valuable asset that is not just a pile-load of information but also a proverbial mine of gold dust for any company. Keeping this data protected from internal or external corruption and illegal access protects a company from financial loss, reputational harm, consumer trust degradation, and brand erosion. Keeping any kind of data strictly on a need-to-know basis is a very important feature that any company would take very seriously.
With its operations on the cloud, Salesforce CRM has a robust mechanism for data security, and its security model is as robust as it can be
There are three data-related paradigms in Salesforce: objects, records, and fields. Objects are comparable to tables in excel sheets or other databases. Fields are like columns of a table. Records are analogous to the rows of data inside the table. Salesforce primarily uses these three paradigms or constructs to have data security in its security model.

The salesforce security model primarily revolves around these three constructs.
1: Object-level-security (Accessibility)
2: Field-level-security
3: Record-level security (Visibility)




1. Object-level-security (Accessibility):
Object-level security is primarily controlled by user profiles that enable CRUD (Create, Read, Update, Delete) settings to user profiles and permission sets that enhance access.
Profiles
Profiles are the way to control access to object-level and field-level security and one of the primary features with which salesforce security is controlled. Every user in salesforce needs to have a Profile. Typically, basic access with uniform accessibility among users is granted using a profile, and access is enhanced using permission sets as mentioned below.

Permission sets and Permission Set Groups
Permission sets and Permission set groups are a brilliant way to enhance object-level access for a user with a profile, in isolation from the other users from the same profile.
For instance, consider a profile having ten users associated with it, and only one user among them needs to have additional access to some object. Salesforce simplified the solution and made permission sets and permission set groups available for this scenario of enhanced access in isolation to others in the profile.


2. Field-level-security:
A user in spite of having object-level access needs access to individual fields of each object. In Salesforce, an admin can provide read and write permissions for individual fields. An admin can also set a field to hidden, completely hiding and removing access to the field from that user. This feature gives access to different fields to different kinds of users.
For instance, account teams and marketing teams of an organization need not necessarily have access to all the fields of an object. Using Field level security, one can hide data required by the accounts team (pan card number, bank account number, etc.) from the marketing team that has no business to view that data.

3. Record-level security (Visibility):
Object-level security access and field-level security access will enable a user to access only those records that are owned by him/her. But managers and other executives need access to records of employees below them in the role hierarchy. This is where record-level security sometimes referred to as record-sharing comes into the picture.
Record-level security involves a few steps to secure the data. You basically restrict all access by locking the access to the most restrictive level using org-wide defaults. Then you use the other record-level security tools (manual sharing, sharing rules, role hierarchy, apex sharing, etc) to rant additional access to selected users when needed.



Apart from these primary ways of data security; salesforce also has log-in IP restrictions, log-in timing restrictions, log-in location restrictions, password policies, two-factor authentication, and other ways of securing data.




You can get to know more about salesforce and its security model here.
Founded in 2015, Premium Learning Systems have established a strong foothold in the domain of training with our phenomenal results. Till date, more than 25,000 students have been a part of this journey that has enhanced their skills and enlightened their career paths.

We offer a Career Accelerator Program (C.A.P.) which is an intensive 12 week online training program conducted by Premium Learnings to enable professionals for the Premium-IT industry even if they are coming from a non-IT background.
For any Queries Contact us:- https://premiumlearnings.newzenler.com/contact-form/?utm_source=cms&utm_medium=pankti
If you are interested in Salesforce you can join our Career Accelerator Program (C.A.P).
Click the link and join the course: https://www.premiumlearnings.com/cap/?utm_source=cms&utm_medium=pankti

Have you completed your graduation and are still looking for a job in IT? Or do you want to switch to a career in IT? You can learn about how to do so by reading the details here:
https://www.premiumlearnings.com/blog/reasons-to-switch-to-an-it-job?utm_source=cms&utm_medium=pankti