![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Microsoft 365 and Office | Access | For home | Windows
A family of Microsoft relational database management systems designed for ease of use.
Don't confuse the runtime version of Access with a runtime database.
They are different things!
The runtime version of Access is an installed msaccess.exe crippled by the removal of most design tools. If all the user has is the (free) runtime version, then the design window buttons for forms, reports, VBA and so on are all greyed out, and they cannot even get into the mode to change the structure of things; nor can they even see your VBA code. It doesn't matter whether the database is named .accdb, .accdr, .accde, .mdb or whatever - the program itself simply doesn't contain the code to let them change the design.
However, if the user has a full retail or corporate version of Access installed, then they CAN get into design mode. Changing the extension to .accdr just tells retail Access to behave as if it were the runtime version (it's good for testing to make sure that you aren't preventing the user from doing legitimate work). But it does NOTHING to protect the database; the user can just rename it back to .accdb and do whatever they like. Changing the extension doesn't affect what's in the database in any way whatsoever!
What you CAN - and should - do is to use the Make ACCDE option to "compile" the .accdb database into a .accde version. This compiles and hides all the VBA code, and turns off most of the design tools (e.g. you can't open a Form in design view). You can still design or change Queries, but not forms or reports. It's possible (using third-party tools you can find on the web) to convert a .accde back to a .accdb but it's not something most endusers will be able to do.
I'd suggest keeping your own master copy of the frontend as a .accdb file, well backed up both onsite and offsite; make .accde files for your users, both for security and because they're usually a bit smaller and a bit faster. When they need a new feature, create and test it in your master copy and then make and distribute a new .accde. It's totally up to you (and your IT department if you have one) whether to buy each user a retail Access license and install the full program, or install just the runtime.
It's all but impossible to TOTALLY secure the backend. If the database is to be usable at all, then it must be open for reading and writing; if a user can (say) legitimately delete or change some records, then there's no easy way to prevent them from ILLEGITIMATELY deleting or changing some other records. If data security is a big issue, you'll need to go to SQL/Server as the backend, with data logging, hot multilevel backups, rollbacks and recoveries, and all the things DBA's get paid for. You just need to decide how much effort you need to expend for your particular situation - anything from having one shared .accdb backend (backed up both onsite and offsite at a minimum), to - well, the sky's the limit.