Organizations and User Groups are used to provide visibility and assign permissions to Users as a group. You can also provide visibility and assign permissions to individual Users.

Permissions must be assigned at the User Group level rather than at an individual User level. Assigning permissions at the User Group level makes it easy to manage the permissions in an application. The only exception is the System user, who has permissions at the User level.

It is recommended to test all User Groups and their permissions before deploying your application. This ensures that the User Groups have access to the right functionality based on their visibility and permissions.

Some services are available through a Resource called EntityServices. The Resource enables you to interact with User Group entities programmatically. After you create the User Group, you can interact with it through built-in services to add or remove a user.

These services allow you to write custom services that set visibility and permissions on collection of entities.

Remove the out-of-the-box Users group from the Everyone Organization. This ensures that all the Users do not have visibility access to all the entities on the platform. It is recommended to assign visibility access to Users depending on the type of User.