The .xml
and .csv
files provide security settings on a broader scale: create
, read
, update
, and delete
.
If you want per field settings instead you'll have to play around with the xml view file. Check out the domain
settings.
Something like:
<field name="DOB" attrs="{'readonly':[('groups_id.category_id.name','=','Human Resource')]}"/>
The above is not restrictive enough, but hopefully will give you the idea.
As convenient as this might be, I don't think it's a good idea. Depending on the laws of where your company is located, the company can be responsible for the accuracy of that data. Having the employee present evidence of any changes to somebody in HR can be a good thing.