You can simplify access
control management by creating a folder structure that reflects the
access distinctions that you want to make. Instead of setting permissions
on each individual object, set permissions on the folders. The objects
in a folder inherit the folder's effective permissions.
Tip
To protect the folder structure,
do not grant WriteMetadata permission on a folder to someone for whom
WriteMemberMetadata permission is sufficient.