Security / Overview
Security Handbook

Security Standards

The approved startup-stage controls for credentials, authentication, recovery, access ownership, and future maturity.

Document: SEC-000Type: HandbookStatus: ApprovedOwner: Cloudberrie Leadership & EngineeringVersion: 4.2.0Updated: 2026-07-17
Approved Baseline

Protect Cloudberrie credentials, access, and recovery information.

This handbook defines the current startup-stage security controls and the conditions that trigger migration to business-grade access management.

Apple PasswordsApproved for 2026
UTCInfrastructure time standard
AnnualFormal review cycle

Security Standards

Credentials

SEC-001 Credential Management

Approved vault, naming, recovery-code storage, and migration trigger.

Authentication

SEC-002 MFA Standard

Required controls for Tier 1 platforms and recovery methods.

Recovery

SEC-004 Backup & Recovery

Offline recovery copy, restoration tests, and emergency handling.

2026 Current State

ControlCloudberrie StandardStatus
Password managerApple PasswordsApproved
Shared password documentsProhibitedEnforced
Cloudflare MFAEnabled, backup codes stored in Apple PasswordsImplemented
Infrastructure timezoneUTCApproved
Business password manager reviewJanuary 2027, or earlier when trigger conditions occurScheduled