All Tidepool employees and subcontractors work remotely.

Some full-time Tidepool team members with privileged access reside outside of the United States. These international subcontractors are legally bound by the same confidentiality and security requirements as our US-based employees.

• We do not allow SSH or RDP access (or any other direct access to production systems, including database).

• All connectivity to backend systems takes place within an AWS VPC over authenticated private network connections.

• Admin and support access roles:

  • RBAC via OpenID Connect and OAuth2 (Google SSO)

  • All admin actions occur via an API gateway over TLS with full auditing/logging

  • All access for monitoring and troubleshooting takes place over API, there is no back end root account.

  • Application Security access changes are documented and approved via source code control

• All login access to the AWS console requires two-factor authentication using a separated account (non-domain).

• Use of access keys for service accounts is minimized via the use of IAM roles, with regular review and key rotation