Erik,
I'm not familiar with Business Central security however, is it really possible to give permissions to Users for all Contacts with a description beginning with M? (by the way is it case sensitive?)
The short answer for CRM is no. OOB security is not data driven, so I cannot setup a security role or policy that says every CRM User can read/update/delete any contact where the 3rd letter of the Contact last name is M. What i can do is setup a workflow or automate that shares that Contact record with individual Users or shares that Contact with a Team that grants them these privileges. However, if you need to do this, you should really take a look at your security strategy within CRM. Direct shares with Teams is not the best security configuration and the only one worse than that is direct shares with individual Users.
The bulk of your security should come through Business Unit hierarchy, User Hierarchy, User Record Ownership and Security Roles. Then Team Ownership should be used sparingly and as a last resort direct shares with Teams or Users (and these should be system managed through workflows and automates). Never, ever, ever rely on Users or work instructions to add/remove direct shares in CRM. The system does it or it does not get done, period. (you will thank me later).
