Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 29 Next »

All Tidepool employees and subcontractors work remotely.

Some full-time Tidepool team members with privileged access reside outside of the United States. These international subcontractors are legally bound by the same confidentiality and security requirements as our US-based employees.

Tidepool employees with critical production access

Access to servers is limited, logged and audited and defined explicitly using Role Based Access Control (RBAC).

Employees accessing our production database or applications authenticate using two-factor authentication.

  • We do not allow SSH or RDP access (or any other direct access to production systems, including database ).

  • All connectivity to backend systems takes place within an AWS VPC over authenticated private network connections.

  • Admin and support access roles:

    • RBAC via OpenID Connect and OAuth2 (Google SSO)

    • All admin actions occur via an API gateway over TLS with full auditing/logging

    • All access for monitoring and troubleshooting takes place over API, there is no back end root account.

    • All access changes are documented and approved via source code control

  • All login access to the AWS console requires two-factor authentication

  • Use of access keys for service accounts is minimized via the use of IAM roles.

Tidepool employees with full administrator access, including the production database (PHI):

Tapani Otala

Ben Derr

Todd Kazakov

Alexander Diana

Jimmy Phan

Howard Look

Eric Wollesen

Software engineers with software deployment access for Tidepool Web

Clint Beacock

Chris McGee

Software engineers with software deployment access for Tidepool Uploader

Gerrit Niezen

Chris McGee

Software engineers with software deployment access for Tidepool Mobile

Nate Hamming

Pete Schwamb

Tapani Otala

Arwain Giannini-Carlin

Tidepool employees with user support access in ZenDesk

US Tidepool employees may provide user support and have access to end user account conversations in a support capacity. These conversations may include discussion of PHI.

Nate Hamming

Alexander Diana

Chris McGee

Gerrit Niezen

Clint Beacock

Pete Schwamb

Tapani Otala

Arwain Giannini-Carlin

Ben Derr

Christine Bridges

Christopher Snider

Dave Cintron

Ginny Yadev

Kelly Watson

Kevin Weng

Janet Kramschuster

Melissa Maniscalco

Matthew Robins

Nick Riggall

Pragna Sadhu

Timothe Bykusenge

Howard Look

Brandon Arbiter

Rea Rostosky

Saira Gallo

Shawn Foster

Tidepool employees with user support access in Tidepool Web

Tidepool Web allows users to share account data directly with Tidepool within the application to assist with technical support questions and troubleshooting. The following Tidepool employees have access to this capability.

Becky Cooney

Ben Derr

Chris McGee

Christopher Snider

Clint Beacock

Dave Cintron

Gerrit Niezen

Ginny Yadav

Howard Look

Nick Riggall

Tapani Otala

Jimmy Phan

Kelli May

Todd Kazakov

  • No labels

The content of the Tidepool Technical Documentation is licensed under a Creative Commons CC0 1.0 Universal (CC0 1.0) Public Domain Dedication.