It’s important to note that filtering by email will not give you real data security. All data is still downloaded to the app, and only filtered in the app. Somebody who knows what they’re doing can open the app in a web browser and get to all the other user’s data.
We have been working on a feature to provide true row-level security, where the app can’t even download rows that the logged-in user doesn’t “own”. Let us know if you definitely need this feature and we can onboard you to the current early version.
To clear up potential misunderstandings: if your app has password or email whitelist authentication, then our security implementation will not allow anybody to download any of the data in your app unless they can actually log in.