Using dynamic views you can specify permissions down to the row or field level

e.g.

CREATE VIEW sales_redacted AS
SELECT
  user_id,
  country,
  product,
  total
FROM sales_raw
WHERE
  CASE
    WHEN is_member('managers') THEN TRUE
    ELSE total <= 1000000
  END;

More details at https://docs.databricks.com/security/access-control/table-acls/object-privileges.html#row-level-perm...