Which user's jwt token belongs to, how can only data belonging to that user's be retrieved?

But can we please know when is the official method/plugin is coming to address the data ownership issue? It is listed in the roadmap for over a year now and have many votes as well.