Security & Password Sharing Policy

Purpose:

To define strict protocols for managing and sharing passwords and other sensitive credentials across the team to ensure organizational security and compliance.

Guidelines:

1. Password Manager Usage:

All passwords must be stored and shared only using Passbolt.
No other tools or methods are permitted for storing or transmitting passwords.

Never share passwords through Google Chat, email, or any other messaging platforms.
Credential files (e.g., .env, config files) must not be shared in any group or individual chat, under any condition.

3. Temporary Exceptions:

In rare, urgent cases where sharing via Passbolt is not feasible:
- Passwords may be shared via Google Chat in 1:1 messages only.
- The recipient must copy or use the password immediately.
- The sender must delete the message immediately after confirmation.

4. Monitoring & Compliance:

Google Chat messages are internally monitored.
Any password or credential sharing attempts via unauthorized channels will trigger admin alerts.
Violations may lead to warnings or further disciplinary action.

Reminder: Security is everyone's responsibility. Handle all credentials with the utmost caution.

Purpose:​

Guidelines:​

1. Password Manager Usage:​

2. Prohibited Sharing Channels:​

3. Temporary Exceptions:​

4. Monitoring & Compliance:​

Purpose:

Guidelines:

1. Password Manager Usage:

2. Prohibited Sharing Channels:

3. Temporary Exceptions:

4. Monitoring & Compliance: