Thanks for the discussion guys, I need to explain some more: my customer data on my server is name, email, address, order amount, products bought, etc. What I don't want is anyone other than myself access to this data, I am mainly concerned with financial data (the total sales history of my products) the issue I have is customers can request their registration code or change their email in my system, so I can't remove the data that is old, or encrypt it because it will need to be encrypted/decrypted with each database query wouldn't it, if that is even possible? Even so the encryption keys would need to be on the server, and if they have access to the server they have access to the keys.
One idea I had is to simply remove all of the dates and price information from my database on the server, and keep a database with the dates locally, then do a sync every month or so removing the older dates on the server. This wouldn't remove all of my historical sales data but would remove two important factors, timing and pricing.
I'm not really _that_ worried about it, but would like to protect it is possible.
If you want to control the access of data to just yourself then what braindigitalis propsed would work well for just restricting access to the data. I wonder why you think you can't encrypt the data. Just because the email address field changes it's value doesn't necessarily mean the encryption keys change. So, is this server a repository or something that customers access by placing an order on your system?