Table access control

Table access control (table ACLs) lets you programmatically grant and revoke access to your data from Python and SQL.

By default, all users have access to all data stored in a cluster’s managed tables unless table access control is enabled for that cluster. Once table access control is enabled, users can set permissions for data objects on that cluster.


In North America, table access control is available only on Enterprise accounts. In the rest of the world, table access control is available only on accounts that include the Premium plan (or, for customers who subscribed to Databricks before March 3, 2020, the Operational Security package). If you don’t know the kind of account you’re on, contact your Databricks sales representative.

Before you can use table access control, a Databricks admin must enable it for the Databricks workspace. See Enable table access control for your workspace.

This section covers: