Printed from CheckTick DSPT Compliance Documentation
Enhanced Acceptable Use Policy (System Administrators)
Personnel: [SIRO Name], [DPO Name]
As a System Administrator for CheckTick, I acknowledge that I have 'Privileged Access' to environments containing sensitive health data. I agree to the following enhanced standards:
- Identity Integrity: I will never share administrative credentials. I will use individual accounts for all tasks on Northflank, GitHub, and PostgreSQL.
- MFA Mandate: I will maintain active Multi-Factor Authentication on all devices and services used to access CheckTick infrastructure.
- Least Privilege: I will only use administrative rights when necessary for a specific task and will 'drop' privileges for routine activities.
- Secure Environment: I will only perform administrative actions from encrypted, company-authorized hardware.
- Transparency & Audit: I acknowledge that all my administrative actions are logged and subject to review via the 'Internal Audit & Spot Check Log'.
- Data Ethics: I will not access, modify, or export patient-identifiable data unless it is strictly required for a documented support or recovery task.
Signed:
- [SIRO Name] - 29/12/2025
- [DPO Name] - 29/12/2025