Changes

* ''Whitelisting'' takes the opposite approach - a role, status or type is added to the ''Allow'' setting.

* This approach means that only contacts possessing a certain role will be able to see or edit the field, or will only be able to see or edit the field if it is on a record in that status or of that type.

:*''scalability purposes'' - if more roles are added to the system, you will not have to remember to decide whether or not they should have access denied on a set of fields

:*''security purposes'' - if a certain role is denied access to a certain field, all that is required to see the field would be that the role be removed from their profile, a privilege which in some cases users are granted.