Overview
You may be conducting a self-assessment for your business and want to know detailed information about Kayako security policies related to passwords at application and database levels, including an evidence of password policy configuration for Kayako.
Solution
Due to security reasons, we do not provide any evidence showing the password policies for the accounts used for the various services used within Kayako.
We follow the standard security protocols outlined below and in the attached security questionnaire in CAIQ format.
- System administrator (user accounts) or operational accounts are used as part of the
system administration function. - Administrator accounts are kept to the least number possible and only accessible to
essential system admin staff. - Operational accounts, are allocated with permissions being set to the minimum level
needed to perform the specific operational and system maintenance jobs. - The passwords for these operational accounts are changed periodically.