Skip to content

Spaces: Granular Data Access and Control

Overview

The Spaces: Granular Data Access and Control feature enables users to create isolated, segmented environments within their UnoLock vault, called "Spaces," where different data sets can be stored and managed separately. This feature allows for precise control over who has access to specific data, ensuring that sensitive information is shared only with authorized individuals or groups. With Spaces, users can assign varying levels of permissions, such as read-only or admin rights, and implement granular access policies, making it ideal for collaborative work environments or for organizing personal data across different security needs.

How It Works

  • Creating Spaces: Users can create multiple Spaces within their vault, each designed to hold a separate set of files, documents, or data. These Spaces act as distinct compartments with their own access controls and permissions.
  • Granular Access Control: For each Space, users can define who has access and what permissions they have (e.g., read-only, read-write, or admin). This allows for fine-tuned control over who can view or edit the content within that Space.
  • Permission Management: Users can easily modify permissions for each Space, adding or removing collaborators as needed. Admins of each Space can invite others to collaborate while maintaining full control over the access level granted.
  • Role-Based Access: Permissions within Spaces can be assigned based on roles, ensuring that only authorized individuals can modify sensitive data or perform administrative tasks.

Security Implications

  • Data Isolation: Each Space is isolated from the others, ensuring that access to one Space does not grant access to another. This compartmentalization minimizes the risk of unauthorized access to unrelated data.
  • Controlled Collaboration: Users can collaborate on specific projects or datasets within a Space without exposing other sensitive data. Only authorized individuals can access the Space they are assigned to, ensuring confidentiality and data integrity.
  • Granular Permissions: The ability to assign different permissions (e.g., read-only, full access) provides additional security by limiting what users can do within each Space, reducing the risk of accidental modifications or data leaks.

Use Cases

  • Team Collaboration: Organizations working on different projects or departments can create separate Spaces for each project. Team members can be assigned to individual Spaces with specific roles, ensuring that sensitive information is only accessible to the relevant people.
  • Personal Data Segmentation: Users who manage different types of personal data, such as financial records, legal documents, or medical information, can organize these datasets into different Spaces, each with its own level of security and access control.
  • Shared Family or Business Vaults: Families or businesses that share a vault can use Spaces to separate private data from shared information. Each family member or employee can have access to their designated Space while being restricted from others.

Why It Matters

In environments where sensitive data is being managed, fine-tuned control over access is essential for security. Spaces offer a powerful way to compartmentalize data and limit who can view or edit information, reducing the risk of unauthorized access or accidental sharing. This feature is particularly valuable for businesses, organizations, or individuals who need to collaborate on specific projects without exposing other unrelated data. By controlling access at a granular level, Spaces provide both flexibility and security, ensuring that data is only accessible to the right people.

FAQs

Can I assign different permissions to different users within the same Space?

Yes, you can assign different permission levels (read-only, read-write, or admin) to individual users within a Space, ensuring that each user has the appropriate level of access.

Can someone with access to one Space see other Spaces in my vault?

No, each Space is isolated. Users who are granted access to one Space cannot see or access other Spaces unless specifically authorized.

Can I change the access permissions for a Space after it’s created?

Yes, you can update permissions at any time, allowing you to add or remove collaborators or change their roles within the Space as needed.

Compliance & Privacy Regulations

  • GDPR & HIPAA Compliance: Spaces allow for strict control over who has access to personal or sensitive data, supporting compliance with data privacy regulations such as GDPR and HIPAA by ensuring that only authorized individuals can view or modify protected data.

Integration with Other Features

  • Advanced Key Management: Spaces work alongside UnoLock’s advanced key management, ensuring that each Space is protected by its own encryption keys and that only authorized users can access the data.
  • Plausible Deniability with Dual-Pin Safe System: For sensitive Spaces, users can enable the Dual-Pin Safe System, ensuring that the existence of certain Spaces is hidden when accessed under duress.