I have some users in my company (Hr and Payroll) where they do not want anyone but that department accessing certain files, that includes the Network Administrator.

How do I go about creating such directory? Also is there anyway to audit who accessed or tried to access the files in that directory?

Thanks for any help