Access Management Policy – GoPerfect

GoPerfect manages user roles and permissions through a structured access control framework that ensures secure access to its systems and data.

GoPerfect employs role-based access control (RBAC) to assign different levels of access based on user roles:

Admin: Full access, including user management, role assignments, and position creation.
Manager: Ability to create, edit, and view assigned positions, as well as invite contributors.
Contributor: Permission to access and edit assigned positions, without the ability to create new ones.

Account Creation:
- Users are manually added by administrators or automatically provisioned through integrations.
- Email verification is used to confirm user identity.
- Role-based permissions are assigned at creation.
Account Deletion:
- Upon deletion, all access is revoked immediately.
- Temporary deactivation (grace period) is supported before permanent deletion.
- Permanent deletion ensures secure removal or anonymization in compliance with GDPR and CCPA.

GoPerfect enforces Multi-Factor Authentication (MFA) for user accounts to enhance security.

Minimum Password Length: GoPerfect enforces a strong password policy.
Failed Login Attempt Lockout: After five (5) failed attempts, accounts are locked.
Lockout Duration: A defined period before the account is unlocked.
Secure Storage: Passwords are securely stored using industry-standard cryptographic techniques.

Audit Trail: All account creation, modification, and deletion activities are logged for compliance purposes.
Regular Reviews: Admins conduct periodic reviews of user access to maintain security.