Thanks again.

I bring up the issue of encryption because I work in the health care field
and have to deal with something called HIPAA in the states which sets a high
bar for privacy. There is some worry, maybe unjustified, that data on the
server needs to be non-viewable by server administrators. Does using the
username log in keep out wandering eyes here? (I realize talented people can
crack CIA databases, but does it offer reasonable safeguards so no one on the
back end can just click and open the files without a determined effort?)

I realize this is an Access form but do you recommend any good books on SQL
Server and ADP solutions?

Thanks,
philr