using a recordset value for security rules is not the intended use of security assist access rules.
security access rules are intended to be used based on data stored in the user table for the user logging in.
Information for the logged in user should be stored in session variable at login time rather than looking it up in a recordset after the user has logged in.
In the Authenticate User Server behavior, go to the Session tab to select other columns from your users table to be stored in session variables when the user logs in.
then create the access rules in security assist to use the sessions instead of using recordsets.
It seams to me you are trying to use the access rules for something they are not intended to do.
if you would rather a refund, send your refund request to the sales department at email@example.com