diff --git a/docs/changelog/6.x.x.txt b/docs/changelog/6.x.x.txt
index 4c228e692..82c00372f 100644
--- a/docs/changelog/6.x.x.txt
+++ b/docs/changelog/6.x.x.txt
@@ -2,6 +2,8 @@
  - Converted WebGUI to use a new object oriented session system. More details
    in migation.txt.
 
+6.8.5
+ - fix [ 1396957 ] Insufficient privileges check on the DataForm
 
 6.8.4
  - fix [ 1395371 ] XSS Vulnerability in DataForm Entries
diff --git a/lib/WebGUI/Asset/Wobject/DataForm.pm b/lib/WebGUI/Asset/Wobject/DataForm.pm
index 70a58eff0..ba60dfb61 100644
--- a/lib/WebGUI/Asset/Wobject/DataForm.pm
+++ b/lib/WebGUI/Asset/Wobject/DataForm.pm
@@ -16,6 +16,7 @@ use Tie::IxHash;
 use WebGUI::DateTime;
 use WebGUI::Form;
 use WebGUI::FormProcessor;
+use WebGUI::Grouping;
 use WebGUI::HTML;
 use WebGUI::HTMLForm;
 use WebGUI::HTTP;
@@ -169,7 +170,11 @@ sub definition {
 			defaultView=>{
 				defaultValue=>0,
 				fieldType=>"integer"
-				}
+				},
+			groupToViewEntries=>{
+				defaultValue=>7,
+				fieldType=>"group"
+				},
 			}
 		});
         return $class->SUPER::definition($definition);
@@ -261,6 +266,14 @@ sub getEditForm {
 		-hoverHelp=>WebGUI::International::get('74 description',"Asset_DataForm"),
 		-value=>$self->getValue("mailData")
 		);
+
+	$tabform->getTab("security")->group(
+		-name=>"groupToViewEntries",
+		-label=>WebGUI::International::get('group to view entries', "Asset_DataForm"),
+		-hoverHelp=>WebGUI::International::get('group to view entries description',"Asset_DataForm"),
+		-value=>$self->getValue("groupToViewEntries")
+		);
+
 	if ($self->getId eq "new" && $self->session->form->process("proceed") ne "manageAssets") {
         	$tabform->getTab("properties")->whatNext(
 			-options=>{
@@ -652,6 +665,7 @@ sub view {
 
 sub viewList {
 	my $self = shift;
+	return WebGUI::Privilege::insufficient() unless (WebGUI::Grouping::isInGroup($self->get("groupToViewEntries")));
         return $self->processTemplate($self->getListTemplateVars,$self->get("listTemplateId"));
 }
 
diff --git a/lib/WebGUI/i18n/English/Asset_DataForm.pm b/lib/WebGUI/i18n/English/Asset_DataForm.pm
index cb1f97c41..0e2947e9d 100644
--- a/lib/WebGUI/i18n/English/Asset_DataForm.pm
+++ b/lib/WebGUI/i18n/English/Asset_DataForm.pm
@@ -1,6 +1,16 @@
 package WebGUI::i18n::English::Asset_DataForm;
 
 our $I18N = {
+        'group to view entries' => {
+                message => q|Group To View DataForm Entries|,
+                lastUpdated => 1057208065
+        },
+        
+        'group to view entries description' => {
+                message => q|Members of this group will have the ability to view data submitted to this DataForm Asset.|,
+                lastUpdated => 1057208065
+        },
+        
 	'90' => {
 		message => q|Delete this entry.|,
 		lastUpdated => 1057208065