As a convenience, most administrators put simple rules, such as those that perform calculations but have no side effects, in the All organization so that everyone granted rights to view rules can access those rules.
However, if you want to provide more security for a rule
Do not put sensitive rules in the All organization.
Put the rule in an appropriate organization such as Top (or another suitably high-level organization) so that only high-level administrators can execute that rule directly.