Isolating data & Shopify integrations for each company in a multi-company ERPNext setup

Hi all,

We’re running ERPNext in a multi-company scenario:

  • Parent Company – acts as the system administrator
  • Subsidiary Companies – each should operate completely independently

Our goals are:

  1. Company-wise data isolation
  • Customers, Sales Invoices, CRM data, reports, etc. must remain visible only to the company they belong to.
  • Users of Subsidiary A should never see or edit records of Subsidiary B (and vice-versa).
  1. Separate Shopify integrations
  • Each subsidiary has its own Shopify store.
  • At the moment ERPNext allows only one set of Shopify credentials, so all incoming data (customer groups, orders, products) is shared across companies.
  • We need every subsidiary to connect to its own Shopify store with its own API keys, without exposing those records to the other companies.
  1. Single code-base, role-based control
  • Core ERPNext and the Shopify connector should be installed and patched once, but permissions and data flow must respect company boundaries.

Questions

  • What is the recommended way to enforce strict company-wise permissions across all doctypes (Customers, Sales Invoices, CRM, etc.)?
  • Has anyone configured separate Shopify credentials per company, or is there a roadmap/patch that supports this?
  • Are there best practices or custom apps/hooks we should look at to keep integrations, records, and user roles completely independent for each company?

Thanks in advance for any pointers or real-world examples!