diff --git a/ex401/ex401.3.end/container_files/seed-data/bootstrap.gsh b/ex401/ex401.3.end/container_files/seed-data/bootstrap.gsh
index 11d3c23..65c0386 100644
--- a/ex401/ex401.3.end/container_files/seed-data/bootstrap.gsh
+++ b/ex401/ex401.3.end/container_files/seed-data/bootstrap.gsh
@@ -7,6 +7,20 @@ stem = StemFinder.findByName(gs, "ref:board", true);
 group.move(stem);
 
 addStem("ref:board", "etc", "etc");
-addGroup("ref:board:etc", "board_managers", "board_managers");
+group2 = addGroup("ref:board:etc", "board_managers", "board_managers");
 
 addMember("ref:board:etc:board_managers", "ref:roles:president_assistant");
+
+grantPriv("ref:board:cmt_fin", group2.toSubject().id, AccessPrivilege.UPDATE);
+grantPriv("ref:board:cmt_fin", group2.toSubject().id, AccessPrivilege.READ);
+
+boardeffect_admins = GroupFinder.findByName(gs, "app:boardeffect:etc:boardeffect_admins", true);
+boardeffect_mgr = GroupFinder.findByName(gs, "app:boardeffect:etc:boardeffect_mgr", true);
+boardeffect_viewers = GroupFinder.findByName(gs, "app:boardeffect:etc:boardeffect_viewers", true);
+
+revokePriv("ref:board:cmt_fin", boardeffect_admins.toSubject().id, AccessPrivilege.ADMIN);
+revokePriv("ref:board:cmt_fin", boardeffect_mgr.toSubject().id, AccessPrivilege.UPDATE);
+revokePriv("ref:board:cmt_fin", boardeffect_mgr.toSubject().id, AccessPrivilege.READ);
+
+revokePriv("ref:board:cmt_fin", boardeffect_viewers.toSubject().id, AccessPrivilege.READ);
+