Hi there, @Aaron_Febo ! Great question.
On the Atlas Security page, you’ll find a whitepaper “MongoDB Atlas Security Controls” … this has a bit more detailed information about the aspect of employee access (as well as several other aspects of Atlas security).
Field-Level Encryption (FLE) looks like your best bet for ensuring any sensitive information you might be storing is encrypted client-side, prior to it being transmitted to the server.
Hope that helps!