HOT POST

50/recent/ticker-posts

Header Ads Widget

SOP for Password, Data Backup and Storage for Computer System

PURPOSE
To lay down the procedure for password and data backup policy for computerized systems.

SCOPE
This SOP shall be applicable for the instruments / equipment wherein data is generated and stored in the computerized systems in the facility.

RESPONSIBILITY
Officers/ Executive

ACCOUNTABILITY
Department Head



PROCEDURE
System, Password and Back-up policies for various instruments / software shall be followed as the below-mentioned procedure.


Password Policy
  • Each user shall have unique Username and Password.
  • Password validity shall be 30 Days.
  • Password shall have at least 8 characters.
  • System shall not acquire last 5 expired passwords.
  • Account shall be lockout automatically after 5 wrong login attempts. Lockout of user shall be unlocked only by administrator.

User Management Policy

Privilege Groups:
There shall be three different level of users (i.e. Administrator, Reviewer and User) and following are the privilege group in the decreasing order based on the privileges assigned.

Administrators:
  • Head-IT or Designee shall be the member of this group. The member of this group has maximum rights and also have rights to assign the privileges to the other privilege group.
Reviewer:
  • Head-QC/ Section Head-QC/ Designee shall be the member of this group. The member of this group shall have rights e.g. Create/Delete/ Edit user, Create/ Edit Method files, Create and Edit Custom calculations, view audit trail etc.

User:
  • The person responsible for the generation of histogram shall be the member of this group. User shall have rights e.g. make measurements, set reference results, print reports etc.

Data Backup

Yearly Backup:
  • Upon completion of the year, analytical data of previous year shall be backed-up from IT server in pre-numbered tape induplicate, Head IT shall be the custodian for the backup tapes.
  1. Tolerance of the yearly backup data shall be ten working days after due date of yearly back-up.
  2. Necessary entry shall be made in the yearly backup register.
  3. All the backed-up tapes shall be kept in a fireproof cabinet.

Numbering System for Backup Taps:
  • Assign the number to the Tape as “XXXX/YYY-01 and XXXX/YYY-02
Where 
XXXX - year 
YYY - serial number of the tape starting from 001 for every new year. 
Tape represents the ULTRIUM DATACARTRIDGE Tapes. Where, 01 & 02 means the two copies of Tapes in duplicate for every year Tapes.

  • Storage and Removal Backed-up Data
  1. The intermediate backed-up data shall be stored on IT server up to completion of the month. Upon completion of the month, after verification of monthly backed-up data, the intermediate data shall be removed from IT server.
  2. The Monthly backed-up data shall be stored on IT server up to completion of one year.
  3. Analytical data for the current month shall be maintained on the respective computer. Upon completion of monthly back-up on IT server and it’s verification the previous month data shall be removed by Concern person / IT person. Example: The analytical data of May - 18 shall be removed from the hard disk of PC upon completion and verification of monthly back-up of May - 18 means in the start of June - 18.
  4. Yearly backed-up data shall be stored on IT server up to six years.
  • Retrieval of Backed-up or Archived Electronic Files
  1. Retrieval of backed-up or archive electronic files shall be authorized by Head Quality / Designee.
  2. Restore the data from backed-up Tapes to IT server and from IT server copy it to its original destination. Then open the required file.

ABBREVIATIONS
SOP: Standard Operating Procedure
IT: Information Technology
QC: Quality Control

ANNEXURE
Nil

REVISION HISTORY
Nil

Post a Comment

0 Comments

close