I agree that this should be more secure and will request a change.

Have a look at the Transaction History Inquiry to see if this would work instead. There is no option to purge history here.

The other option would be a custom report so that the Transaction History report is bypassed. This would not be an inexpensive solution.