Salesforce Experience Cloud offers a powerful way for FieldKo customers to deliver a branded portal to their own clients, providing real-time access to FieldKo data (Visits, Tasks, Surveys) in a secure manner.
This article explains how FieldKo customers can use an Experience Cloud site to expose FieldKo objects to external users, covering the two relevant licence types (Customer Community and Customer Community Plus) and how each affects data access. We will also discuss how to build the portal pages using Experience Builder and ensure that data is shown securely and personalised for each customer. By the end, you’ll understand how to leverage Experience Cloud for sharing FieldKo data with confidence in its real-time visibility and data security.
Experience Cloud Overview for FieldKo Customers
Salesforce Experience Cloud (previously “Community Cloud”) is a platform that enables you to create web portals for different audiences – in this case, a customer portal. It is directly connected to your Salesforce CRM data. For FieldKo users, this means you can create a customer portal website where your clients (external customers) log in to view and interact with their FieldKo-related records (for example, checking the status of a site visit, updating a task, or reviewing survey results).
Key benefits of using Experience Cloud for FieldKo data include:
Branded Experience: You can customise the portal’s look and feel to match your organisation’s branding, providing a seamless experience for your customers.
Real-Time Data: The portal is live with your Salesforce data – when internal staff update a FieldKo record, your customer can immediately see the changes on the portal, and vice versa.
Security and Trust: Salesforce’s robust security model ensures that each customer sees only the data they’re supposed to, no more, no less. Data is stored safely in Salesforce and served over secure connections.
No-Code Customisation: Using the Experience Builder, admins can design pages and components with clicks, not code, to display information and enable interactions.
Licence Types: Customer Community vs Customer Community Plus
Experience Cloud supports different external user licence types. The two relevant for FieldKo customer portals are Customer Community and Customer Community Plus. Both enable customer users to log in and access FieldKo objects, but they differ in their sharing and access control capabilities:
Customer Community licence: This is the standard licence for high-volume B2C scenarios. It has a simpler sharing model — no roles for users, and thus no native sharing rules. Customer Community users’ access to records is primarily controlled through sharing sets (and their profile/permission sets). This licence is cost-effective and great for large numbers of users who only need access to their own data. However, it cannot access certain advanced features (for example, limited reports or certain objects) and is restricted in sharing complexity. It’s equivalent to the old “High-Volume Customer Portal” user in Salesforce.
Customer Community Plus licence: This is an enhanced licence that includes more advanced sharing and functionality. Users get roles in the system, enabling role-based sharing and ownership like internal users. With Plus, you can use sharing rules, role hierarchy, and even manual sharing to open up record access as needed. It also generally allows access to more Salesforce features (e.g. reports/dashboards, content, maybe more custom objects). This licence is suited for scenarios where you might have multiple contacts at one account who need to collaborate or see each other’s data, or you require more complex data visibility rules. It’s akin to a “Customer Portal Manager” or the partner community user in terms of capability. Plus licences are often used in B2B contexts or more involved customer service situations where advanced sharing is essential.
Key difference – Sharing Model: Because Customer Community users don’t have roles, they cannot be added to sharing rules (sharing rules only work with roles, public groups, etc.). Instead, Salesforce provides Sharing Sets to grant them record access based on account or contact matching. Customer Community Plus users, on the other hand, do have a role (or 3 roles per account in a hierarchy) and so you can leverage Salesforce’s standard sharing rules and role hierarchy for data visibility. In summary:
Customer Community: uses Sharing Sets (match on Account/Contact) for record access; no role hierarchy. Simpler, good for one-contact-per-account or strictly separate data access.
Customer Community Plus: uses Roles and Sharing Rules for record access; data can roll up in hierarchy and be shared across users. More flexible for complex sharing (e.g. many contacts per account, need to share some records across those contacts).
Both licence types support using profiles or permission sets to control object-level and field-level permissions. This means regardless of licence, you must ensure the FieldKo objects are exposed via the proper permissions, which we’ll cover next.
Exposing FieldKo Objects to Portal Users
FieldKo uses custom objects for Visits, Tasks, Surveys, etc., to track work. To make these visible in the portal:
Object Permissions: Through the profile or permission set assigned to your external users, grant at least Read access on these objects. If you want customers to perform actions (e.g. create a new Task or update a Survey response), give Create and/or Edit permissions as appropriate. For example, you might allow Edit on Task so they can update certain fields, or Create on Survey if they need to submit a new survey record.
Field-Level Security: Within those profiles/perm sets, review the field permissions. You might have internal-only fields on Visit that you don’t want the customer to see (set those to hidden for the external profile). Ensure that all fields the customer should view or update are visible/editable for them. This prevents any sensitive internal data from leaking onto the portal page.
Related Records Access: If a FieldKo object has related child records (for instance, maybe a Visit has related Task records), keep in mind the customer needs access to the parent to see the child. Salesforce will enforce object permissions and sharing down the line. Generally, if you share the parent (Visit) via sharing sets/rules, and the external user profile has access to Task, they will see related Task records that are associated. You might need to explicitly share child records too depending on their relationship (master-detail inherits parent sharing automatically; lookup does not).
After updating permissions, it’s wise to test with a sample external user. For example, log in as the portal user and ensure you can see the Visits tab or page and open a Visit record without getting permission errors, and that you only see fields intended for external viewing.
Building Portal Pages with Experience Builder
Salesforce provides a drag-and-drop site builder called Experience Builder to design the pages of your customer portal. You can expose FieldKo data in a user-friendly way using standard components:
Use a Template: If you started with a template like Customer Service, it may already have some pages (Home, Contact Support, etc.). You can repurpose pages or create new ones for your FieldKo objects. For instance, you might create a Visits page to list upcoming or past visits for the logged-in customer.
Page Creation: In Experience Builder (accessible via the “Builder” link in Experience Workspaces or by clicking “Edit” on the site), use the Pages menu to add new pages. You can create a Object List Page or Object Detail Page for your custom object:
For example, add a List Page for Visits. You can drag a Record List component onto the page and set it to show a list of Visit records. You can configure it to show only records the user has access to (which by default it will – the component will respect sharing). You might choose a default list view (perhaps one you created like “My Visits” that filters by the user’s account if needed).
Add a Record Detail page for Visit as well, so when a customer clicks a specific Visit, they see the details. Ensure the layout displayed is a layout configured for the external profile (or use a single page layout and control field visibility with FLS as done above).
Do similarly for Tasks or Surveys if you want separate pages, or perhaps surface Tasks as related lists on Visit pages if that makes sense (Experience Builder has related record components too).
Navigation: Update the navigation menu (often a top menu or sidebar) in Experience Builder to include links to these new pages. For example, add a menu item “Visits” pointing to the Visits list page, “Tasks” to tasks, etc., so that customers can easily find them.
Branding and Design: Use the Theme panel to apply your logo, colours, and fonts so the portal matches your branding. You can add rich banners, adjust page layouts, and include text or image components to guide users.
Components and Flexibility: Experience Builder supports standard Lightning components. You can add charts, list views, knowledge search, etc., as needed. For FieldKo data, perhaps a dashboard component showing summary of their open tasks or a chart of survey scores might be useful (note: Customer Community Plus users could have access to certain reports or dashboards if you enable that, whereas base license might not allow dashboard access – keep the licence limitations in mind).
All these changes are made with clicks. Experience Builder makes it easy to tailor pages without code. Take advantage of previewing the page as different users to ensure the layout and data visibility is correct for an external user.
Once you’re satisfied with the design and layout, Publish the changes so they go live to your portal users.
Ensuring Personalised and Secure Access
One of the main goals is to ensure that each customer sees only their own FieldKo data on the portal. Here’s how Experience Cloud and your configuration ensure personalised, secure access:
Account Separation: Typically, portal users from one account cannot see data from another account. The sharing rules or sharing sets you configured enforce this. For instance, a sharing set gave access to Visit records where record.Account = user’s Account – so by definition, they can’t see other accounts’ Visits. In the UI, this means when they log in, any list views or record lists will inherently only show their records. If they search, global search results will be scoped to what they have access to.
Sharing Model Recap: For Customer Community users, the sharing set ensures they see records tied to their account or contact. For Customer Community Plus, the role hierarchy and any sharing rules determine their view. Important: Customer Community users cannot suddenly gain access to unrelated data because the system simply doesn’t link them to it (no accidental broad sharing since no roles exist to accidentally put in a sharing rule). Conversely, with Plus users, you have more power – you might intentionally or accidentally share more, so design your sharing rules carefully.
Test Different Scenarios: It’s good to test with multiple test users from different accounts to confirm that each sees only their own. For example, user from Account A should not see anything for Account B in Visits page. Use Salesforce’s Login As User for external users or create dummy accounts for testing.
Record Ownership and Creation: If you allow external users to create records (say fill a survey or create a task), be aware of ownership. A record created by a Customer Community user will be owned by that user (who has no role). It will automatically satisfy the sharing set criteria (it’s their account’s record), so other contacts on the same account with Customer Community licence – if they also log in – will also get access to that record if your sharing set is based on account. (This is great for collaboration: all contacts on the same customer account can see each other’s submissions, as long as the sharing set is account-based.) With Plus, if one user creates a record, their role and hierarchy might allow peers or just their manager to see it. You might use a sharing rule or enable super user to let peer contacts see it. Consider whether customers from the same company should see each other’s entries or not, and configure accordingly.
Secure Guest Access: Ensure pages that list data are not accessible to guest (unauthenticated) users. By default, Experience Cloud will not show object data to guests unless you intentionally set it. Double-check that your site’s Guest User profile has no access to these objects, so that data is truly behind login. (This is usually default, but worth verifying in Administration > Pages or Guest User profile.)
Salesforce’s security model is very robust – if configured correctly, there is no way for one customer to see another’s data. Even if they manipulate URLs or record IDs, Salesforce will check their permissions and sharing before displaying anything. This gives you and your clients confidence that each customer’s information is isolated and safe.
Real-Time Visibility and Data Security Benefits
Using Experience Cloud for FieldKo data means your customers get information in real time, and you maintain enterprise-grade security:
Real-Time Visibility: Because the portal is directly reading from your Salesforce org, any updates are immediate. For example, if your internal team completes a Visit and marks it as Completed in FieldKo (Salesforce), the customer could refresh their Visits page and see that updated status right away. There’s no overnight sync or delay. This real-time aspect improves transparency and customer satisfaction – they are always looking at the latest data.
Two-Way Interaction: Not only can customers see data, but with the proper permissions, they can interact (post comments via chatter if enabled, update tasks, answer surveys). These changes are instantly saved in Salesforce. Your internal team will see customer-entered data without needing to import or re-key – it’s truly a unified system.
Data Security: All data in transit between the user’s browser and Salesforce is encrypted via HTTPS. Salesforce handles user authentication (with options for multi-factor authentication, login IP restrictions, etc., which you can enforce for extra security). Moreover, every action the user takes is under Salesforce’s governance – for example, if they try to access a record they shouldn’t, they’ll simply get an error or no data. By leveraging standard Salesforce sharing (sharing sets, rules, profiles), you inherit a tested security framework. You do not have to write custom code to hide records – Salesforce does it for you.
Compliance and Auditing: All portal logins and actions are recorded like normal user logins. You can run reports on what your external users are doing if needed. And because you’re not exporting data outside Salesforce, you maintain compliance (all data stays within the Salesforce cloud). If your industry has compliance requirements, using Salesforce communities can help meet them since Salesforce offers compliance certifications and features (e.g. field history tracking on objects can log changes made via the portal).
In summary, Experience Cloud allows FieldKo customers to expose FieldKo data to their clients confidently. Customers get a convenient, up-to-date view of their information through a branded portal, and FieldKo customers (the admins) have full control over what is shared.
By understanding the differences between Customer Community and Customer Community Plus licences, you can choose the model that fits your use case – simple and scalable vs. advanced and flexible. And with the portal built and configured as described, you ensure that each user’s experience is personalised, data is secure, and everyone is literally on the same page at the same time.