HI Ravi,

To ensure that confidential data does not end up in the wrong hands within the organization, you can leverage Salesforce's data security features.
>Salesforce provides a comprehensive and flexible data security model to secure data at different levels, including object-level, field-level, and record-level security

> Use Salesforce's user profiles and permission sets to control access to confidential data. You can assign different profiles and permission sets to different users based on their roles and responsibilities

> Configure org-wide defaults to lock down your data to the most restrictive level. This will ensure that only authorized users can access confidential data

> Use sharing rules to open up and allow secure access to data based on business needs. You can configure sharing rules to share data with specific users, roles, or groups

> Monitor data access to ensure that only authorized users are accessing confidential data. You can use Salesforce's audit trail feature to track data access and changes

> With Transaction Security, you can create policies that consist of events, notifications, and actions.

Related:
https://trailhead.salesforce.com/content/learn/modules/enhanced_transaction_security/enhanced_transaction_security_basics
https://security.salesforce.com/
https://help.salesforce.com/s/articleView?id=sf.security_center_deploy_policies.htm&type=5
https://www.withsecure.com/pl/expertise/resources/salesforce-data-security

If this information helps, please mark the answer as best. Thank you