CTD gives you fine-grained control over who can see what. Permissions work at three levels: organization-wide settings, team roles, and individual privacy controls.
Role-based access controls
For Team and Business plans, administrators control who can see what within the workspace:
- Admins — full access to settings, user management, integrations, and all team data
- Members — access to the shared network and search; cannot modify org settings or see other members' private contacts
- External members — contribute their network to the workspace but have limited visibility into your internal team's data (configurable by admins)
Business Edition: domain-wide delegation
For Business Edition, CTD uses domain-wide delegation — a standard mechanism supported by Google Workspace and Microsoft 365 that lets your IT admin grant CTD access at the domain level.
- The admin defines exactly what CTD can access (e.g., metadata only — no email bodies, no attachments)
- Access can be revoked by the admin at any time through the same admin console
- CTD does not automatically create accounts for everyone at the company — admins use a user management page to decide exactly which employees get CTD accounts
- Admins can set data scopes per user, so end users have zero setup effort on their end
Network visibility controls
Every user controls their own privacy. You choose one of two starting modes:
- Closed network — your contacts are visible only to you. From there, you can whitelist specific people or domains you want to share with (e.g., open to your own company domain only).
- Open network — your contacts are visible to CTD users you know. From there, you can block specific people or entire companies (e.g., block all competitors).
Regardless of your network setting, you can mark individual contacts as private. A private contact is visible only to you — no one else will know you have a relationship with that person.
Data separation in a shared graph
CTD is not a traditional multi-tenant application with physically isolated databases per customer — by design, because its value comes from understanding how people and companies are connected across the entire network.
What we have instead is logical separation enforced at the data layer. Every query enforces the privacy and sharing rules you've set. Your contacts, scores, and network data are never exposed to other users beyond what you've explicitly shared.
For enterprises with stricter isolation requirements, our team is happy to walk through the architecture and answer compliance questionnaires. Contact security@ctd.ai.