I do not think it is feasable what you want. You want the functionality which is not designed with strong security in mind to be secure and i am talking about wordpress, on which HivePress is running. For what you want it should be the other way around. A secure foundation on which you build the functionality.
Also, Hivepress in its current state is not even GDPR compliant. Even though i reported the issue months ago Indirect data leak of email adress and Vulnerability in the extension functions - #12 by JSHBV , the issue has not been fixed in the core, which is worrysome.