@Dominic Lagger suggests some really good reading about access controls within Confluence.
In addition to that, consider defining and using Groups to help.
Most Confluence instances have a variety of access needs. For example, only people in the Finance group should be able to see certain spaces or pages.
A very small organization might be able to manage access by adding and removing individual users on specific Spaces and Pages.
Groups do incur some overhead (you have to keep your Group lists updated as people are hired, transferred, expand their scope, etc). More info here:
Understanding the default groups can also save you some time and effort.
Note that while Groups can be used within Confluence, they actually operate across Atlassian products, including for example Jira.
Groups can also be incorporated with SSO and other user directories (e.g. LDAP/AD). See also the Atlassian Access product:
Hi, Confluence collaborators! As part of #Confluence-Collaboratory month, we’ve created a very special Mythsbusters segment, where we're dive into an interesting myth and uncover the truth behind i...
Connect with like-minded Atlassian users at free events near you!Find an event
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no Community Events near you at the moment.Host an event
You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events