VDR glossary · Permissions

Granular permissions

Access settings applied at the individual file or folder level, so different users see different subsets of the same room.

Granular permissions are access rules set at the level of a single file or folder rather than the whole room, so two people logging into the same data room can be shown two completely different sets of documents. Instead of a blunt “in or out” switch, an administrator can decide, per item and per user or group, who may view a document, who may download or print it, who may see it exists at all, and who is blocked entirely. That precision is what turns a shared repository into a controlled deal environment: the seller publishes one room, then carves it into as many private views as there are parties, all without moving or duplicating a single file.

One data room, different views per partyA permission matrix with three folders down the side and three parties across the top, showing view, download, and no-access states that differ per user against the same underlying files.Same room, three different viewsAccess is set per folder, per partyBidder ABidder BLegal counselFinancialsContractsHR filesDownloadView onlyView onlyView onlyDownloadDownloadHiddenHiddenView only

How do granular permissions work in a data room?

Granular permissions sit on top of the access controls that decide who gets into the room at all, then divide the interior into finely bounded views. Most platforms let an administrator attach a permission to any node in the folder tree and have it cascade down, so setting “view only” on the Contracts folder applies to every file inside it until you override a specific document. The rights on offer usually run in a ladder: no access, then see the file exists without opening it, then view-only access in the browser, then view plus download or print, up to full edit or upload for internal team members.

To keep this manageable, permissions are almost always assigned to groups rather than individuals. This is where granular permissions meet role-based access control: you define a group such as “Bidder A” or “Buy-side legal”, set that group’s rights across the tree once, and every person added to the group inherits them. When a new adviser joins, you drop them into the right group instead of hand-building their access file by file. The result is a single published room that presents a different, tightly scoped surface to each party.

Why do granular permissions matter for M&A and due diligence?

In a competitive sale, several bidders and their advisers work inside one room at the same time, and none of them should see the others exist or reach documents outside their remit. Granular permissions are what make that possible. The seller can stage disclosure, opening basic financials to all bidders early, then unlocking sensitive customer contracts or a clean team folder only to the shortlisted party, without ever building a second room. Payroll and personal data can stay hidden from commercial teams to respect privacy rules, while counsel sees the legal folder in full.

The security stakes are concrete. Regulators treat least-privilege access as a baseline expectation: the ICO and GDPR principle of data minimisation both point to sharing personal data only with those who genuinely need it, and a room that cannot limit access at the document level struggles to meet that bar. Granular permissions are the mechanism that enforces least privilege in practice, which is why they anchor most VDR security assessments.

A concrete example

A software company runs a sell-side auction with three bidders. Each bidder group can download the financial statements they need to build a model, but the customer list, which names the target’s largest accounts, is set to view-only so no bidder can walk away with it if the deal collapses. HR records containing employee salaries are hidden entirely from all bidders and visible only to the seller’s own counsel. When the field narrows to one buyer, the administrator flips a single group setting and the winning bidder’s diligence team gains download rights to the contracts folder, while the losing bidders quietly lose access. No files moved; only permissions changed.

How should you evaluate granular permissions?

Judge them on granularity, defaults, and how easy they are to audit. Weak systems only toggle access at the top folder; strong ones reach the individual document and separate viewing from downloading. Test whether new users default to no access rather than full access, and whether you can preview the room exactly as a given group will see it before you invite anyone.

What to checkWeak setupStrong setup
Level of controlWhole-room or top-folder onlyPer file, with view / download split
AssignmentOne user at a timeGroup and role based, inherited
Safe defaultNew users see everythingNew users see nothing until granted
VerificationGuesswork”View as this group” preview
Change trackingNo recordEvery grant logged and reversible

Common mistakes are predictable: granting download when view-only would do, forgetting that a permission set on a parent folder cascades to files added later, and over-nesting groups until nobody is sure who can see what. For the full mechanics, read our guide on data room permissions explained and the walkthrough on how to grant and revoke data room access; to see which providers offer true document-level control, use our side-by-side comparison.

FAQ

What is the difference between granular permissions and role-based access control? Role-based access control groups users by function and assigns each role a standard bundle of rights; granular permissions are the underlying ability to set those rights precisely, down to a single file or folder. In practice the two work together: roles decide who belongs to which group, and granular permissions decide exactly what each group can see and do inside the room.

Can granular permissions hide that a document even exists? Yes. Beyond view and download rights, most rooms let you set a file or folder so that unauthorised users never see it listed at all, not just a locked entry. This matters when the mere existence of a document, such as a folder named after a rival target, is itself confidential.

Do granular permissions replace watermarking and view-only controls? No, they work alongside them. Granular permissions decide who reaches a document; view-only access, watermarking, and audit logging control what happens once they open it. A well-run room layers all of these, so access is scoped, exposure is limited, and every action is traceable.