Transactional access control information extracted from a transactional data source and used by a transactional application program is received at an analytical application program used for analytical processing. Each entry in the transactional access control information identifies a user that is permitted to access a data object that is stored in the transactional data source. The received transactional access control information is translated into analytical access control information for use by the analytical application program. Entries in the analytical access control information identify users that are able to access data objects that are stored in an analytical data store used by the analytical application program and correspond to data objects stored in the transactional data source.