Board/Policies/Accounts Policy

Miraheze Limited Accounts Policy
The purpose of this policy is to outline how accounts that give a public-facing appearance of acting on behalf of or for Miraheze Limited are managed. This policy falls under the sole authority of the Board of Directors and will be regularly reviewed if necessary, as changes are required.

Directors of Miraheze Limited
Directors have the legal authority and duty to act in the best interests of the company – as such they will occasionally require accounts that are clearly identifiable as being official-looking. At the request and discretion of the Chair of the Board of Directors, any Director may be granted access to a:
 * Miraheze email account in any format ending in miraheze.org.
 * User account on the wikis in the same format as their email account, ending in “(MH)” or “(Miraheze)”.
 * Any accounts must be protected by a strong password and by 2 Factor Authentication.
 * Advanced permissions as deemed appropriate and necessary in the execution of their duties.
 * A Director can be authorised to utilise their existing community account if:
 * they do not require any advanced permissions in their duty as a Director and do not make any comments that may reflect negatively on Miraheze Limited, or
 * are not actively engaged in the community under their existing account (e.g. no advanced permissions on wikis).

Trust and Safety
Members of Miraheze Limited’s Trust and Safety team require access to information, resources, and tools that are not available to everyone freely. At the request and discretion of the Director of Trust and Safety, any member of the Trust and Safety team may be granted access to a:
 * Miraheze email account in any format ending in miraheze.org.
 * User account on the wikis in any format deemed appropriate, ending in “(MH)” or “(Miraheze)”. This is to protect their public-facing identity if they wish.
 * Any accounts must be protected by a strong password and by 2 Factor Authentication.
 * Advanced permissions as deemed appropriate and necessary in the execution of their duties.
 * A member can not be authorised to use their pre-existing community account for any Trust and Safety business except where the Director of Trust and Safety has given written permission and the Board of Directors confirm this permission.

Site Reliability Engineering
Members of Miraheze Limited’s Site Reliability Engineering department are authorised to conduct any actions necessary to protect the security and stability of the services they manage. As a result, they require an official presence to communicate with third-party providers, users and to confidentially share information internally. At the request and discretion of the applicable SRE team lead, any member of the Site Reliability Engineering team may be granted access to a:
 * Miraheze email account in any format ending in miraheze.org.
 * User account on the wikis in the same format as their email account, ending in “(MH)” or “(Miraheze)”.
 * Advanced permissions as deemed appropriate and necessary in the execution of their duties.
 * Any accounts must be protected by a strong password and by 2 Factor Authentication.