Although there are no ACLs in Fabric 1.0, Fabric 1.1 has a new feature known as Attribute-Based Access Control. This can be used to implement ACLs in chaincode.
In the chaincode, you can retrieve the attributes of the enrollment certificate to allow or disallow accesses that are based upon those attributes.