Wondering what your definitions are for "linked" and "file"...
If manager folder is where you intend to keep the data, this implies you will split db in to front and back ends. If your intent is to not provide folder permissions to regular "users" then they will not be able to write to those tables. An application lock file (.laccdb) must be created where the be db is located and users must have create, delete and modify/edit permissions in order to do so. That leaves you with having a "replication" type of system, which was deprecated about 10 years ago, so don't even go there.
A reasonable level of security can be realized in an Access design (enough to thwart novices), short of outright copying of a be file. I imagine Windows could report such activity but I'm not an IT specialist. At that point the data would be already out the door, so a be password ought to be one of the many things you'll want to employ.
The more we hear silence, the more we begin to think about our value in this universe.
Paraphrase of Professor Brian Cox.