currently we have a single company and in another 8 months rollout additional companies. We need to consider the data security while rollout the companies. We need way to restrict user should be access only their company and shouldn't allow to view other company information. For example, user 1 belongs to company 1 and shouldn't give ability to view the information nor perform transaction on company 2. We thinking capture the company at actor level then pass into security level to control.
Is there is any better way to achieve the requirement. Appreciate your feedback.
