The solution is present in one of your posts -> help about customizations.
1. Play around with custom attributes + alert configuration
2. If not play around with account limitation (in the above case if DB group has a different scope limit their login account to what they can see or receive)