Data isolation in a multitenancy database

When a tenant is created, an area of the database is isolated for the tenant data. The database area is populated with system data, template data, and master data. The global administrator manages the template data.

When the provider creates a tenant record, the database is populated with the following initial data for the tenant:
System data tables
The standard system data tables do not have the tenant ID column and do not contain tenant-specific data.
Master data tables
Master data tables contain data that is shared by all the tenants. If a tenant adds their own information to a row in the master tables, the tenant ID is added to the table row. The information is available for that tenant only. For example, tables that contain ALN domain values are shared by all tenants. However, if a tenant adds an ALN domain value, a row is added to the table to contain the value. The tenant ID of that tenant is added to the row. Only the tenant that added the value can access the value.
Template data tables
Template data tables contain data that is copied from a template but is unique for each tenant, and can be modified by each tenant. Template data tables have the tenant ID column. When a tenant is created, table rows with the tenant ID of the new tenant are created, based on the data in the template data tables. A tenant can view and modify only the information that is associated with the tenant ID of that tenant.
Tenant data tables
Tenant data tables contain data that is identified by tenant ID and is owned by each tenant. There is no sharing of the data in tenant data tables.
Parent topic: Configuring tenant data