Since it's likely you are now running on Windows 2000 or newer, the file permissions can be set to only allow the accounts (users) you want to gain access.
Access 2003 db uses standard security based on userid & password.
Word 2002 & 2003 Mail Merge using that db allows user to access any & all data from the Access db without prompting for userid & password.
Security on the Access db is now irrelevant. In Office 97, Word Mail Merge would prompt for userid & password when selecting the data source. 2003 does not do this.
How do I secure the Access db from Word Mail Merge?