With the acces rules on entity level you can make sure that the user can or can not read/write the data on database level. https://docs.mendix.com/refguide/access-rules/
If you have a page and want a specific user role to not see the label and attribute field on that page you can set conditional visibility for this user role.
Hope this helps!
Visibility is no security. I would advise to follow some academy lessons like this one: https://academy.mendix.com/link/modules/549/lectures/4277/9.1-Securing-Your-App
You should set access rules on the entities.