There are concerns that I have that anyone that has access to the Change record can approve a Workflow Task. Although there are logs to show if this happens there are far to many Change Records to track to that level of detail. What can I do to ensure that only the ones in the Group (or specific member if assigned to them) can approve a particular task? I thought of doing a data partition but not certain how I would restrict that since all users need to at least be able to approve their first Workflow task to start the workflow. Any ideas would be appreciated.