Access to Private Addresses res.users.log per user [('create_uid','=', user.id)] res.partner company ['|', ('partner_share', '=', False), ('company_id', 'in', company_ids + [False])] res_partner: portal/public: read access on my commercial partner [('id', 'child_of', user.commercial_partner_id.id)] Defaults: alter personal defaults [('user_id','=',user.id)] Defaults: alter all defaults [(1,'=',1)] ir.ui.view_custom rule [('user_id','=',user.id)] Partner bank company rule [('company_id', 'in', company_ids + [False])] multi-company currency rate rule [('company_id', 'in', company_ids + [False])] change user password rule [('create_uid', '=', user.id)] res.partner.rule.private.employee ['|', ('type', '!=', 'private'), ('type', '=', False)] res.partner.rule.private.group [('type', '=', 'private')] ir.filters.admin.all.rights [(1, '=', 1)] ir.filters.owner [('user_id','in',[False,user.id])] ir.filters.own.rule.delete [('user_id', '=', user.id)] ir.filter: portal/public [('user_id', '=', user.id)] company rule portal [('id','in', company_ids)] company rule employee [('id','in', company_ids)] company rule public [('id','in', company_ids)] company rule erp manager [(1,'=',1)] users can only access their own id check [('create_uid', '=', user.id)] user rule ['|', ('share', '=', False), ('company_ids', 'in', company_ids)] change own password [('create_uid', '=', user.id)] Public users can't interact with keys at all [(0, '=', 1)] Users can read and delete their own keys [('user_id', '=', user.id)] Administrators can view user keys to revoke them [(1, '=', 1)]