Either implement this by setting the entity access rules for the standard user role. One rule with read write permissions if the record field recorded by is equal to the user name (or associate the record to the user and use the association in the xpath constraint)
A second rule for the user with read permissions when the opposite is true. So, recorded by != currentuser/name (or again use an association)
For the admin you have a pemisison set to read write without the restriction.