How to set up private data for each user identity in an org

Brian Carpenter

I'm building out a basic digital asset transfer application for images.  I'd like:

1) some of the data about the image (filename, base64_encode) to be public to everyone
2) some data (download_url) to be private only to the user who adds the image to the BC until they grant access to view the download_url to another person/s.

Seems like a private data collection structure would be ideal.

Can private data collection be private at a user identity level within an organization?  As in, each Org user has a private data collection defined and managed separately.

Any suggestions on how to structure a solution if a private data collection is the wrong approach?