The fact that several users work on shared resources does not mean that everyone should see the same information at the same level.
"Need-to-know" is a fundamental principle in cybersecurity. It helps us reduce unnecessary exposure and reduce the chances of confidentiality breach.  

Most cloud services (Google Drive, OneDrive, Dropbox) allow users to define different access permissions at the user/organizational group level.

The first step is to map the existing information, define who needs to access the information and in what way (full control, read and edit or read only). Once access levels are defined, you cab implement the settings accordingly.

It is recommended to review the permissions you allocated periodically to ensure that the people who were granted permission to the information still need it.