To ensure authorized users entitled to use data processing systems have access only to the data to which they have a right of access, and that personal data cannot be read, copied, modified or removed without authorization in the course of processing, use, and storage:
- Subscriber environments are logically separated at all times. Subscribers have access only to their own data.
- Subscribers access their data via self-service application interfaces. Subscribers are not allowed direct access to the underlying application infrastructure. The user permissions model is designed to ensure that only the appropriately assigned individuals can access relevant features and data.
- OAPPS personnel require access to Subscriber Data in order to deliver services, provide effective Subscriber support, product development, and research, and troubleshoot potential problems. Personnel is granted data access on a need-to-know basis based on job role, and reviews of permissions are performed quarterly.