You can use views and stored procedures to tailor privileges to suit the needs of your enterprise.
For databases that require a high level of security, defining privileges directly on tables has limitations. Any privilege granted to a user on a table applies to the entire table. You may need to assign privileges more precisely than on a table-by-table basis. For example:
You do not want to give access to personal or sensitive information stored in an employee table to users who need access to other parts of the table.
You may wish to give sales representatives privileges on a table containing descriptions of sales calls, but limit update privileges to their own calls.