The Risk

The problem is not the page. It is every path to the fact.

flowchart TD
    U[User / Agent] -->|via Web UI| A1[Application]
    U -->|via BI Tool| A2[Direct Query Tool]
    U -->|via ETL / Service| A3[Backend Job]
    U -->|via psql / raw SQL| DB[(Database / Graph)]

    A1 -->|intended path| API[API Layer]
    API -->|still needs protection| Data[Central Data Store]

    A2 -.->|bypasses app ACL| DB
    A3 -.->|bypasses app ACL| DB
    DB -->|all paths converge here| Facts[Sensitive Facts]

    classDef bypass stroke:#f66,stroke-width:2px
    class A2,A3,DB bypass
    

If one route bypasses the control, the data is exposed. Application-centrism only guards the happy path.