diff --git a/modules/ROOT/pages/authentication-authorization/property-based-access-control.adoc b/modules/ROOT/pages/authentication-authorization/property-based-access-control.adoc
index 7996d5e3d..9a7abf198 100644
--- a/modules/ROOT/pages/authentication-authorization/property-based-access-control.adoc
+++ b/modules/ROOT/pages/authentication-authorization/property-based-access-control.adoc
@@ -41,6 +41,10 @@ Pattern syntax:
 ====
 For more details about the syntax descriptions, see xref:database-administration/syntax.adoc[Cypher syntax for administration commands].
 ====
+[NOTE]
+====
+The role does not need to have `READ` privilege for the property used by the property-based privilege.
+====
 You can use this pattern syntax for defining read privileges as follows:
 
 [source, syntax, role="noheader"]
@@ -78,6 +82,10 @@ DENY MATCH {*} ON GRAPH * FOR (n) WHERE n.classification <> 'UNCLASSIFIED' TO re
 ----
 GRANT READ {*} ON GRAPH * FOR (n) WHERE n.securityLevel > 3 TO regularUsers
 ----
+[NOTE]
+====
+The role `regularUsers` does not need to have `READ` privilege for the property `securityLevel` used by the property-based privilege.
+====
 
 .Denying permission to `READ` all properties on nodes where the property `classification` is not included in the list of `[UNCLASSIFIED, PUBLIC]`
 [source, syntax, role="noheader"]