SQL Server uses a role based security model. Your databases get created already without granting access to users on the server. You should set up database roles with whatever permissions you wish, then make your users members of those roles as required.

You should however make sure that users on a server do not have admin priviledges at the OS level, or they will get access to all databases on the server.