I'm working on a small app where users can create a couple different types of nodes (there's a hierarchy between them, and there's a field denoting the owner's node ID on each), and I want to enforce a permissions model where they can only view nodes they created. Will I need to create manual permission queries for each node type and relationship to accomplish this, or is there a more elegant way?

Yes, you would need to implement this on every Type.