We have a requirement where we would like to restrict particular asset folders to particular groups. For example we have a GRC team which needs to manage assets with relation to an ISMS, we would like to restrict these entities to that of the GRC team. And the same for say HR related assets (people related records/training).