Hello,
It is a best practice to prevent users from exporting data to CSV or mass-importing. However, blocking these permissions will prevent them from using the Outlook plugin (and Sugar Connect, I suspect).
It would be great it there were additional permissions for External App (API) write and External App (API) read.
Best regards,
Damien
