Versions Compared

Version Old Version 41 New Version 42
Changes made by

Phil Rodrigues

Phil Rodrigues

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • Admin Management

    • The purpose of this activity is to restrict administrators in the organization. Assigning a group to this activity will make it so certain activities an administrator performs in the Admin console require group approval

    • The Approval Group assigned to this activity must consist of entirely admin users, as a standard level user will not have access to the Admin console functionality

    • Actions like deleting a user, changing a user’s role, and swapping an approval group will invoke the Admin Management group’s approval

  • Data Export

    • Data Export allows an administrator within your organization to download a decrypted copy of the organization’s data

    • An organization must pass the organization health check to complete a full export

    • The types of exportable data are email, drive, activity log, and ACL report

      • Email data is exported in a folder hierarchy consisting of an inbox, drafts, sent, trash, and custom user folders

        • The mail messages are in EML format

      • Drive data is exported in the same folder set as the user’s actual drive and contains the files

      • Activity Log data is exported as a CSV file

      • ACL Report is exported as a CSV file

      • All or a selection of users may be chosen

      • A timeframe is chosen and may span the origin of the organization

    • The Approval Group assigned to this activity may compose of admin users, standard users, or a combination

  • Account Recovery

    • The account recovery Approval Group (also known as the Recovery Group) is a group of users within your organization that approve a user’s account recovery

    • PreVeil doesn’t utilize usernames and passwords for account recovery. Instead, what allows a user to access their PreVeil account is an encryption key that gets generated on a user’s device when they create their PreVeil account.

    • Assigning a Recovery Group to a user in your organization will provide each member of the group with a shard of the user’s encryption key. When invoked, the Recovery Group has the ability to rebuild a user’s key on their device, thereby allowing the user to re-access their account.

    • This is the primary method to protect a user’s account access, as PreVeil does not have access to any of our user’s encryption keys, so we cannot restore these keys for you. As such, the responsibility of making sure this recovery method is available to your users will fall upon the administrators of a PreVeil organization creating and assigning a Recovery Group for their users. We strongly recommend that a Recovery Group is assigned to every user in your organization.

    • The Recovery Group can consist of admin level users, standard level users, or a combination of the two.

...