The sales org has four tiers: GM → Sales Manager → Team Leader → Sales Individual. Every Sales Individual carries one target, which rolls up level-by-level until it reaches the GM. In the raw data the target is stored at Sales-Individual granularity, but certain users must see only the GM-level total, not the individual numbers. How can I enforce this in the script (row-level security / permission logic)?
