Eunoiana Software Development

Daily security baseline

Operational Security Baseline

Eunoiana Dev applies a daily operational security baseline for company work, client projects and administrative access. These controls are designed to reduce common risks in everyday development and business operations.

Owner: Eunoiana Dev Effective date: 18 April 2026 Applies to: Daily operations, devices and client project work

Control Statement

Eunoiana Dev maintains a practical security baseline for daily operations. This includes screen locking, strong password practices, multi-factor authentication where supported, least-privilege access, clear-desk and clear-screen behaviour, careful handling of client data, secure credential storage and timely security updates.

The baseline applies to company devices, accounts, development tools, client project materials and third-party services used to deliver work.

Screen Locking

Devices used for company work are expected to lock when unattended. Users should manually lock screens when stepping away and use automatic lock settings where available.

Password Standards

Company accounts and client-access accounts use strong, unique passwords. Password reuse is avoided, and password managers are used where appropriate to support secure credential handling.

Multi-Factor Authentication

Multi-factor authentication is enabled where supported for important services such as hosting, domain management, repositories, email, payment platforms, admin dashboards and client systems.

Least-Privilege Access

Access is granted based on business need. Administrative privileges are limited, and access to client systems, repositories and third-party platforms is removed when no longer required.

Clear Desk and Clear Screen

Client information, credentials, notes and project materials are not left unnecessarily visible. Sensitive information should be cleared from desks, screens, shared spaces and screenshots when not required.

Client Data Handling

Client data is used only for agreed project purposes. Sensitive files and project materials are stored in approved systems and are not shared through unapproved channels.

Security Updates

Devices, browsers, development tools and key applications are expected to receive security updates in a timely manner. Unsupported software is avoided where practical.

Safe Daily Practices

Eunoiana Dev avoids untrusted downloads, unnecessary browser extensions, casual sharing of credentials and use of personal or public systems for sensitive client work where avoidable.

Review and Questions

This operational baseline is reviewed as company tools, client requirements and platform security expectations change.

Questions about these controls can be sent to hello@eunoiana.com.