Salesforce Dictionary - Free Salesforce GlossarySalesforce Dictionary
DictionaryCCompliant Data Sharing
AdministrationBeginner

Compliant Data Sharing

Compliant Data Sharing is a Setup feature that provides enhanced data sharing controls for organizations in regulated industries.

§ 01

Definition

Compliant Data Sharing is a Setup feature that provides enhanced data sharing controls for organizations in regulated industries. It enables granular, record-level data access rules that comply with regulatory requirements like HIPAA, FINRA, and GDPR, ensuring sensitive data is only accessible to authorized users.

§ 02

In plain English

👋 Study buddy

Here's a simple way to think about it: Compliant Data Sharing exists for the rules normal sharing can't express. HIPAA minimum-necessary, FINRA information barriers, GDPR purpose limitations - record-level access in regulator-aligned terms.

§ 03

Worked example

scenario · real-world use

A healthcare organization using Health Cloud enables Compliant Data Sharing to ensure that patient records are only visible to the care team assigned to each patient. A nurse in the cardiology department can see her patients' records but not those of patients in the oncology department, even though both departments share the same Salesforce org.

§ 04

Why Compliant Data Sharing exists for the rules normal sharing can't express

Salesforce's standard sharing model - role hierarchy, OWD, sharing rules, manual sharing - works for the vast majority of orgs. It struggles when the access rules come from a regulator. HIPAA's minimum-necessary principle, FINRA's information-barrier rules, and GDPR's purpose-limitation principle don't map cleanly onto "users in role X see records owned by role Y." Compliant Data Sharing is the layer Salesforce built for those cases.

It runs alongside the standard sharing engine and lets administrators define record-level access in terms regulators understand: who can see this record, for what reason, for how long, under what circumstance. The trade-off is complexity - Compliant Data Sharing rules are harder to author, harder to debug, and harder to explain than a regular sharing rule. The right time to reach for it is when an auditor would not accept "we set the OWD to Private and added a sharing rule" as the answer; the wrong time is whenever a sharing rule will do.

§ 05

How to set up Compliant Data Sharing

Compliant Data Sharing (CDS) is the granular record-level access control feature for regulated industries — Financial Services Cloud, Health Cloud, Public Sector. It supplements the standard Salesforce sharing model with per-record participant roles and access-rule policies that align with HIPAA / FINRA / GDPR requirements.

  1. Confirm Compliant Data Sharing is licensed

    Setup → Compliant Data Sharing. Available in Industries Clouds (FSC, Health Cloud, Public Sector) — not standard Sales/Service Cloud.

  2. Open Setup → Compliant Data Sharing

    Setup gear → Quick Find: Compliant Data Sharing → Compliant Data Sharing.

  3. Tick Enable Compliant Data Sharing for the relevant objects

    Per-object enablement. Each object (Account, custom object) gets CDS independently.

  4. Configure Participant Roles per object

    Roles are like Account Team Roles but for compliance — "Treating Physician," "Compliance Reviewer." Each Role defines what access (Read / Edit) they get on the parent record.

  5. Configure Access Rules per Role

    What permissions each role inherits at record level. Granular: read certain fields, edit others, see related Cases or not.

  6. Add Participants to records

    On each record, add users with their Participant Roles. Access is granted dynamically based on the Role definition.

  7. Save and audit

    Compliant Data Sharing leaves an audit trail of access grants — required for HIPAA / FINRA reviews.

Key options
Per-Object Enablementremember

Each object opts in independently.

Participant Rolesremember

Per-object role definitions (like Account Team Roles, but compliance-focused).

Access Rules per Roleremember

Granular field/related-list access.

Audit Trailremember

Built-in logging of access grants and changes.

Gotchas
  • Compliant Data Sharing is licensed separately in Industries Clouds. Standard Sharing Rules / Account Teams aren't a substitute — CDS provides finer-grained record-level access tied to participant roles.
  • CDS supplements but doesn't replace Org-Wide Defaults. The OWD floor still applies — CDS extends access on top, can't restrict below OWD.
  • Audit trail is built in but limited to CDS actions. For broader compliance audits (file access, login patterns), pair with Event Monitoring.
§ 06

How organizations use Compliant Data Sharing

Pacific Crest Bank

FINRA information-barrier rules expressed via Compliant Data Sharing; auditors accept the configuration as evidence.

Lighthouse Health

HIPAA minimum-necessary access patterns enforced; broad sharing rules don't accidentally expose PHI.

§

Trust & references

Official documentation

Straight from the source - Salesforce's reference material on Compliant Data Sharing.

Was this entry helpful?
Help us write better definitions. Quick reactions or detailed edit suggestions.
§

Test your knowledge

Q1. In which area of Salesforce would you typically find Compliant Data Sharing?

Q2. What is the primary benefit of Compliant Data Sharing for Salesforce administrators?

Q3. Can a Salesforce admin configure Compliant Data Sharing without writing code?

§

Discussion

Loading…

Loading discussion…

Back to Dictionary