PDi CRM Security comes with the standard menu disable/enable policy as you would expect from a Windows application. However, individual form objects can also be assigned to policies to disable or hide.
A customer postal address / contact details can be disabled from certain users being able to update. Individual grid columns can also be hidden, to allow for certain sensitive information such as profit, gross profit from being viewed by users, just as an example.
The screen cast below gives a brief guide through on creating menu policies and form object policies.