User Access Rights and Responsibilities
It is likely that users' access rights and responsibilities at software level will be administered internally. This may be the responsibility of the support team or of one or more functional specialists. Rules will need to be established in order to control this process efficiently. Possible rules could include:
- Requests for new users must be submitted on the requisite forms with signed authorisation from the Head of Department or named representative and the new users will be added to the system within 5 working days of receipt;
- Modifications to existing user roles and responsibilities must be submitted on the requisite forms with signed authorisation from the Head of Department or named representative and the modifications will be made on the system within 2 working days of receipt;
- Password resets must be telephoned by the registered user, the Head of Department or named representative and the password will be reset within 2 working hours;
- User access rights no longer required must be submitted on the requisite forms with signed authorisation from the Head of Department or named representative and these will be disabled within 1 working day of receipt; and
- Unused user access rights will be disabled after 120 days if an authorised request to disable has not been received.
