Warning
🚧 Work in Progress: This page is currently under construction. Content may be incomplete or subject to change. To contribute, see the contribution guide.
Security & IAM
Overview of the security strategy and identity and access management.
Principles
- Single Sign-On: Entra ID as the single identity provider for all systems
- Least privilege: minimum required access, reviewed periodically
- Zero secrets in code: credentials managed via Azure Key Vault or secure environment variables
- Privacy by design: personal data identified, mapped, and protected from inception