Company Groups let a group of companies maintain one source of truth for policies, authored once and applied across member tenants, while each member keeps its own evidence and audit trail. This is built for holding structures, managed service providers, franchises and multi-entity enterprises.
How sharing works
- The Admin Tenant authors a policy and shares it with the group.
- Member tenants see that policy read-only. They cannot edit or delete the source of truth.
- Each member supplies its own evidence against the policy's controls. Evidence is never shared between members, even for a shared policy.
Sharing a policy with your group
In the Admin Tenant, open the policy you want to share and expand it.
Use the "Share as group source of truth" selector to publish it to the group. Members will see it marked as a group policy.
Isolation guarantees
Cross-organisation access is strictly read-only and enforced at the database level. Members read a shared policy and its control map but cannot write to it; a member can never see another member's evidence; and only the owning Admin Tenant can publish a policy to the group.