To protect your user data, we recommend that you configure your application's Privacy Rules. These rules are enforced server-side, so can be used to effectively limit access to data based on user roles or other criteria.