# Access Control and Access Management

<details>

<summary>Does the company have a regulated password policy?</summary>

Yes, a consistent password policy has been implemented.

Passwords have a maximum validity period, a minimum length requirement, and a history enforcement. They must not be too easy or obvious, and cannot be dictionary words. Each employee and collaborator stores passwords in a password manager (KeePassXC).

</details>

<details>

<summary>Is there a procedure governing access and identity management?</summary>

Yes, according to PBI - 04 Annex 01 Access Management Instruction at Vercom S.A.

Access is granted solely upon approval by management. Employees must have unique identifiers and are prohibited from sharing individual passwords with others. There is an implemented procedure for user authentication in the IT system – Instruction for Managing the Information System. Each employee has individual accounts, logins, and passwords.

</details>

<details>

<summary>Do we ensure accountability of individuals utilizing IT resources and data through digital identity management and logging the activities of those assigned to these identities?</summary>

Yes.

</details>

<details>

<summary>Are default accounts such as generic accounts, embedded accounts, non-personalized accounts, and guest accounts secured, blocked, or removed as part of the procedure?</summary>

The system does not allow the creation of generic, non-personalized, or guest accounts.

</details>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.emaillabs.io/en/faq/emaillabs-safety-center/access-control-and-access-management.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.