An IT company manager aims to configure access controls for team members to their individual user-specific folders within an Amazon S3 bucket named "bucket-a." For instance, user x should have access only to the directory "bucket-a/user/user-x/" and user y should be restricted to "bucket-a/user/user-y/", with similar access constraints applied to other team members.

As a Developer Associate, which IAM construct would you recommend to generalize the policy snippet for all team members, thereby eliminating the necessity for the manager to generate individual IAM policies for each team member?