Own leverages the Salesforce API and OAuth 2.0 for data security. Access controls for the organization's data are owned and managed by the organization's Salesforce administrator.
For additional control measures, ask a Salesforce Admin team to enable the Login IP Allowlist feature. This can be used with the Own Region Locations and IP Addresses for Allowlisting article to further limit access to organization data.