MessageBird follows principles of “need to know “and least privilege. We promote the use of Role based access control. Provisioning and deprovisioning is overseen by the security team, with SSO and 2FA by default.
Owners have been defined for each information asset who are responsible for ensuring access to their systems are appropriate and reviewed on a regular basis.
Whenever dealing with sensitive information or taking critical action, we use the four-eyes principle.
Access is terminated on the same day if and when an employee leaves MessageBird.