Yes. Any active session on and connection to terminals, PCs or servers within QR Planet's environment needs to be secured and completely terminated. Users are required to log off when a session is finished.
QR Planet's Access Control Policy has been developed in accordance with all relevent compliance requirements and current standards and is subject to reviews.
all access controls to applications, operating systems, databases, and network devices, remote or on-site, are provisioned to the principle of least privilege.
Yes. Access rights are reviewed periodically and also when a Constituent's role changes, and are adjusted if necessary, especially privileged access rights.
QR Planet's remote access policy includes Multi-Factor Authentication, VPN Access, complex and encrypted passwords, and the monitoring of remote access.
Yes. Any system access by remote sources needs to be encrypted, as required by our Remote Access and our Network Security Policies.