The login page created by security assist will store the users ID in a session variable.
instead of passing the ID through the GET, use the ID that is store in the session.
double check the Security assist authenticate user behavior for the name of the session variable that is created.
Then edit the data Assist recordsets and the insert and update behaviors to use the ID Session instead of the ID URL Variable.