Sure. You do this using so-called "Run With Owner Permission" (RWOP)
queries. With that method, the users can use forms & reports that are based
on the tables, but they can not open the tables directly. Check out the
Access Security FAQ &/or other posts to this newsgroup for more information.