locking don't a binary program someone else wrote and compiled

i need to run a program someone else wrote and compiled. i'm going to run it in its own userid. i'm still worried what it might do there. my greatest worry is about it doing something stealthy like send some info about me to its home server which it will be talking to. so my first concern is limiting what it can read. as the only user i have not locked down user reading that much. but, i guess i need to do that, now. i'm not worried so much about it trying to crash my system, because i'd know something happened. any suggestions that could shorten my work? i'm on Xubuntu 18.04 LTS with plans to upgrade to 20.04 next month.

edit:

the subject should be s/don't/down/