My client has several departments in their company. They want each department head to be able to edit products in their department, but not be able to edit products in other departments. Is there a way to specify security by user and entity? I suppose the same logic could apply to Distributors, Manufacturers, etc...