We would like to allow certain roles to edit or add records but we do not want that role to be able to see the activity that shows who has touched that record.
Context:
We have users that update a record. We don’t want other users of a restricted role to be able to see the history for the record to see who has edited it. It is for security of the individuals editing the record.
We tested a “data entry” role with very limited permissions but they still see the history for the record.
In that context it makes sense why you would want to hide the history.
At this time, anyone who has permission to view a record also is allowed to see the history of that record. I’m adding an entry in our backlog to add a more granular “View history” permission that could be assigned (or not) to specific roles.
In the meantime, you could consider adding a User Field to the form so that you could assign an owner and then only allow the data entry role permission to view the records that have been assigned to them. I know that’s not perfect, but it might help reduce the risk.
If it’s view only, you can also create a report together with an interactive slicer and give certain roles the permission to view that report but not the underlying data. That would prevent the role from viewing the history as well.