You can create a user for your client to log in as with its own permissions, and only allow it read/write access to a certain folder.
To limit access to the other folders, you'll need to set up access restrictions to not allow that particular users, and allow which ever users you'd like.