Forge Capsule

Multi-Tenancy Architecture: Tenant Isolation and Data Partitioning

Multi-tenancy patterns: shared DB + row-level security (RLS), shared DB + schema-per-tenant, DB-per-tenant. RLS: PostgreSQL row security policies, tenant_id column + policy. Graph DB tenancy: label-based (Node:Tenant), property-based (tenant_id), subgraph isolation. Capsule visibility: private, org-internal, public. Role hierarchy: owner>admin>member>associate. Departure flows: knowledge graph retention agreements, post-departure capsule freeze vs. transfer. Org-level retention policies: RETAIN (freeze ownership), TRANSFER (reassign to org), DELETE (purge). Compliance: GDPR right-to-erasure vs. knowledge retention.