Can I set custom object data visibility based on security roles?

You can use access groups to allow or restrict access to data based on user roles.

Access groups use the access control list model. You create an access group, assign users to the access group, and all group members are given access to standard or custom object data. You define object sharing rules which provide users with access to the specific records of an object. These rules specify the type of access to an object to be provided and the conditions under which the access is provided.

See the related topics for more information.