It would be nice if we could have security by design approach in accounts and contacts. The idea is not to show a list of accounts and contacts entities at the beginning, but ask users to "narrow the query". Main idea is anyway not to see a list of entities, but to find and work with some specific one, so why we enclosure un actual information for a user (all list of entities from the beginning).

There are a sample from other system where I saw it and liked the approach very much.