Security Guide for Siebel Business Applications > Configuring Access Control > Access Control Mechanisms >
About Organization Access Control
When individual data can be associated with an organization, you can apply organization access control to the data by one or more of the following means:
NOTE: Siebel Assignment Manager is also organization-enabled; that is, assignment rules can use organization as a criterion.
A user is associated with one organization at any given time, the organization to which the user's active position belongs. For information about changing the active position of an employee or a partner user, see About Position Access Control.
A contact user is indirectly associated with an organization through the proxy employee specified for a Siebel customer application.
For information about proxy employees, see Security Adapter Authentication and Seed Data.