diff --git a/addons/cetmix_tower_server/security/cx_tower_server_log_security.xml b/addons/cetmix_tower_server/security/cx_tower_server_log_security.xml
new file mode 100644
index 0000000..b67a8ca
--- /dev/null
+++ b/addons/cetmix_tower_server/security/cx_tower_server_log_security.xml
@@ -0,0 +1,206 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<odoo>
+
+    <!-- User access rule -->
+    <record id="rule_cx_tower_server_log_group_user_read" model="ir.rule">
+        <field name="name">Tower server log: user access rule</field>
+        <field name="model_id" ref="model_cx_tower_server_log" />
+        <field name="groups" eval="[(4, ref('cetmix_tower_server.group_user'))]" />
+        <field name="domain_force">[
+            ("access_level", "=", "1"),
+            ("server_id.user_ids", "in", [user.id])
+        ]</field>
+    </record>
+
+    <!-- Manager access rules -->
+    <record id="rule_cx_tower_server_log_group_manager_read" model="ir.rule">
+        <field name="name">Tower server log: manager read access rule</field>
+        <field name="model_id" ref="model_cx_tower_server_log" />
+        <field name="groups" eval="[(4, ref('cetmix_tower_server.group_manager'))]" />
+        <field name="domain_force">[
+            ("access_level", "&lt;=", "2"),
+            "|",
+                ("server_id.user_ids", "in", [user.id]),
+                ("server_id.manager_ids", "in", [user.id])
+        ]</field>
+        <field name="perm_read" eval="1" />
+        <field name="perm_write" eval="0" />
+        <field name="perm_create" eval="0" />
+        <field name="perm_unlink" eval="0" />
+    </record>
+
+    <record id="rule_cx_tower_server_log_group_manager_write" model="ir.rule">
+        <field name="name">Tower server log: manager write access rule</field>
+        <field name="model_id" ref="model_cx_tower_server_log" />
+        <field name="groups" eval="[(4, ref('cetmix_tower_server.group_manager'))]" />
+        <field name="domain_force">[
+            ("access_level", "&lt;=", "2"),
+            ("server_id.manager_ids", "in", [user.id])
+        ]</field>
+        <field name="perm_read" eval="0" />
+        <field name="perm_write" eval="1" />
+        <field name="perm_create" eval="1" />
+        <field name="perm_unlink" eval="0" />
+    </record>
+
+    <record id="rule_cx_tower_server_log_group_manager_unlink" model="ir.rule">
+        <field name="name">Tower server log: manager unlink access rule</field>
+        <field name="model_id" ref="model_cx_tower_server_log" />
+        <field name="groups" eval="[(4, ref('cetmix_tower_server.group_manager'))]" />
+        <field name="domain_force">[
+            ("access_level", "&lt;=", "2"),
+            ("create_uid", "=", user.id),
+            ("server_id.manager_ids", "in", [user.id])
+        ]</field>
+        <field name="perm_read" eval="0" />
+        <field name="perm_write" eval="0" />
+        <field name="perm_create" eval="0" />
+        <field name="perm_unlink" eval="1" />
+    </record>
+
+    <!-- Root access rule -->
+    <record id="rule_cx_tower_server_log_group_root_full" model="ir.rule">
+        <field name="name">Tower server log: root access rule</field>
+        <field name="model_id" ref="model_cx_tower_server_log" />
+        <field name="domain_force">[(1, "=", 1)]</field>
+        <field name="groups" eval="[(4, ref('cetmix_tower_server.group_root'))]" />
+    </record>
+
+    <!-- Jet-based User access rule -->
+    <record id="rule_cx_tower_server_log_group_user_jet_read" model="ir.rule">
+        <field name="name">Tower server log: user jet access rule</field>
+        <field name="model_id" ref="model_cx_tower_server_log" />
+        <field name="groups" eval="[(4, ref('cetmix_tower_server.group_user'))]" />
+        <field name="domain_force">[
+            ("access_level", "=", "1"),
+            ("jet_id.user_ids", "in", [user.id])
+        ]</field>
+        <field name="perm_read" eval="1" />
+        <field name="perm_write" eval="0" />
+        <field name="perm_create" eval="0" />
+        <field name="perm_unlink" eval="0" />
+    </record>
+
+    <!-- Jet-based Manager access rules -->
+    <record id="rule_cx_tower_server_log_group_manager_jet_read" model="ir.rule">
+        <field name="name">Tower server log: manager jet read access rule</field>
+        <field name="model_id" ref="model_cx_tower_server_log" />
+        <field name="groups" eval="[(4, ref('cetmix_tower_server.group_manager'))]" />
+        <field name="domain_force">[
+            ("access_level", "&lt;=", "2"),
+            "|",
+                ("jet_id.user_ids", "in", [user.id]),
+                ("jet_id.manager_ids", "in", [user.id])
+        ]</field>
+        <field name="perm_read" eval="1" />
+        <field name="perm_write" eval="0" />
+        <field name="perm_create" eval="0" />
+        <field name="perm_unlink" eval="0" />
+    </record>
+
+    <record id="rule_cx_tower_server_log_group_manager_jet_write" model="ir.rule">
+        <field name="name">Tower server log: manager jet write access rule</field>
+        <field name="model_id" ref="model_cx_tower_server_log" />
+        <field name="groups" eval="[(4, ref('cetmix_tower_server.group_manager'))]" />
+        <field name="domain_force">[
+            ("access_level", "&lt;=", "2"),
+            ("jet_id.manager_ids", "in", [user.id])
+        ]</field>
+        <field name="perm_read" eval="0" />
+        <field name="perm_write" eval="1" />
+        <field name="perm_create" eval="1" />
+        <field name="perm_unlink" eval="0" />
+    </record>
+
+    <record id="rule_cx_tower_server_log_group_manager_jet_unlink" model="ir.rule">
+        <field name="name">Tower server log: manager jet unlink access rule</field>
+        <field name="model_id" ref="model_cx_tower_server_log" />
+        <field name="groups" eval="[(4, ref('cetmix_tower_server.group_manager'))]" />
+        <field name="domain_force">[
+            ("access_level", "&lt;=", "2"),
+            ("jet_id.manager_ids", "in", [user.id]),
+            ("create_uid", "=", user.id)
+        ]</field>
+        <field name="perm_read" eval="0" />
+        <field name="perm_write" eval="0" />
+        <field name="perm_create" eval="0" />
+        <field name="perm_unlink" eval="1" />
+    </record>
+
+    <!-- Jet Template-based User access rule -->
+    <record id="rule_cx_tower_server_log_group_user_jet_template_read" model="ir.rule">
+        <field name="name">Tower server log: user jet template access rule</field>
+        <field name="model_id" ref="model_cx_tower_server_log" />
+        <field name="groups" eval="[(4, ref('cetmix_tower_server.group_user'))]" />
+        <field name="domain_force">[
+            ("access_level", "=", "1"),
+            ("jet_template_id.user_ids", "in", [user.id])
+        ]</field>
+        <field name="perm_read" eval="1" />
+        <field name="perm_write" eval="0" />
+        <field name="perm_create" eval="0" />
+        <field name="perm_unlink" eval="0" />
+    </record>
+
+    <!-- Jet Template-based Manager access rules -->
+    <record
+        id="rule_cx_tower_server_log_group_manager_jet_template_read"
+        model="ir.rule"
+    >
+        <field
+            name="name"
+        >Tower server log: manager jet template read access rule</field>
+        <field name="model_id" ref="model_cx_tower_server_log" />
+        <field name="groups" eval="[(4, ref('cetmix_tower_server.group_manager'))]" />
+        <field name="domain_force">[
+            ("access_level", "&lt;=", "2"),
+            "|",
+                ("jet_template_id.user_ids", "in", [user.id]),
+                ("jet_template_id.manager_ids", "in", [user.id])
+        ]</field>
+        <field name="perm_read" eval="1" />
+        <field name="perm_write" eval="0" />
+        <field name="perm_create" eval="0" />
+        <field name="perm_unlink" eval="0" />
+    </record>
+
+    <record
+        id="rule_cx_tower_server_log_group_manager_jet_template_write"
+        model="ir.rule"
+    >
+        <field
+            name="name"
+        >Tower server log: manager jet template write access rule</field>
+        <field name="model_id" ref="model_cx_tower_server_log" />
+        <field name="groups" eval="[(4, ref('cetmix_tower_server.group_manager'))]" />
+        <field name="domain_force">[
+            ("access_level", "&lt;=", "2"),
+            ("jet_template_id.manager_ids", "in", [user.id])
+        ]</field>
+        <field name="perm_read" eval="0" />
+        <field name="perm_write" eval="1" />
+        <field name="perm_create" eval="1" />
+        <field name="perm_unlink" eval="0" />
+    </record>
+
+    <record
+        id="rule_cx_tower_server_log_group_manager_jet_template_unlink"
+        model="ir.rule"
+    >
+        <field
+            name="name"
+        >Tower server log: manager jet template unlink access rule</field>
+        <field name="model_id" ref="model_cx_tower_server_log" />
+        <field name="groups" eval="[(4, ref('cetmix_tower_server.group_manager'))]" />
+        <field name="domain_force">[
+            ("access_level", "&lt;=", "2"),
+            ("jet_template_id.manager_ids", "in", [user.id]),
+            ("create_uid", "=", user.id)
+        ]</field>
+        <field name="perm_read" eval="0" />
+        <field name="perm_write" eval="0" />
+        <field name="perm_create" eval="0" />
+        <field name="perm_unlink" eval="1" />
+    </record>
+
+</odoo>