I am running into an issue and need some help. I need a way for a user to be able to pull data from one model into another but not see the model where the data is coming from as it is sensitive information. The user has actions that reference sensitive data on the sensitive model. I need the user to be able to pull data from the sensitive model but not be able to read or write any of the modules on the sensitive model as that is where all the personal data sits. I appreciate any help with this.