# Security and permissions for company context

> Company context needs source, scope, redaction, revocation, conflict review, and audit.

Agents should not receive context only because it is relevant. The memory must also be permitted for the current user, project, and agent.

## Why Ambience

- Redaction happens before storage.
- Memories use personal, team, project, org, and sensitive scopes.
- Reads, writes, grants, revocations, and corrections can be audited.

## Related

- [Security and trust](https://ambience.sh/security)
- [Redaction before storage](https://ambience.sh/writing/redaction-before-storage)