Home / Controls / Access Control
Access Control
Controls detail rendered from /controls/ctrl_9f7e0ce328d37e06.
Overview
| ID | ctrl_9f7e0ce328d37e06 |
| Collection | Controls |
| Provider | Vanta Trust Center |
| Company | sonder.io |
| URL | - |
| Counts | - |
| Updated | - |
Raw record
| Field | Value |
|---|---|
| id | ctrl_9f7e0ce328d37e06 |
| providerId | vanta |
| organizationId | org_ab6e061e07441b08 |
| trustCenterId | tc_cb208ad53c399c7e |
| name | Access Control |
| groupName | Product Security |
| status | documented |
| maturity | - |
| description | Sonder operates on a 'least privileged' control principle. Access to data is restricted to authorised individuals and systems through role-based access control (RBAC), multi-factor authentication (MFA), and Context Aware access (ACA). Access permissions are regularly reviewed by Sonder’s IT team and upon onboarding of new employees, changes in roles/requirements, and offboarding. All events are formally logged, tracked and executed via business manager and IT approval. |
| source | {
"field": "graphql.fetchCustomizableControlsDataForExternalTrustCenter"
} |
| company | {
"id": "org_ab6e061e07441b08",
"name": "sonder.io",
"domains": [
"trust.sonder.io",
"sonder.io"
]
} |
| trust_center | {
"id": "tc_cb208ad53c399c7e",
"name": "sonder.io",
"url": "https://trust.sonder.io",
"host": "trust.sonder.io"
} |
| provider | {
"id": "vanta",
"name": "Vanta Trust Center"
} |
| links | {
"self": "/v1/controls/ctrl_9f7e0ce328d37e06",
"company": "/v1/companies/org_ab6e061e07441b08",
"trust_center": "/v1/trust-centers/tc_cb208ad53c399c7e",
"provider": "/v1/providers/vanta"
} |
Get this page with API
Rendered from the bluedoor Trust Centers API. Reproduce it:
GET https://api.bluedoor.sh/trust-centers/v1/controls/ctrl_9f7e0ce328d37e06JSON