Profiles define how users access objects and data and what they can do within the application. Granting "ViewAllData" or "ViewAllRecords" permissions at the profile level overrides any other record-level access mechanism and may give users excessive data access privileges.

Increased risk of data breaches, financial loss, and reputational harm. Eroding customer trust and confidence.