SupportPal handles support inboxes, customer identity data, and automation. Hardening should focus on admin role control, mail channel security, and strict update governance.\n\n## 1) Restrict staff/admin permissions\n\n- apply least privilege for support agents vs administrators\n- enforce strong authentication and MFA policy for privileged users\n- review department-level access and macro/automation permissions\n\n## 2) Secure communication channels\n\n- protect IMAP/SMTP/API credentials and rotate them regularly\n- enforce TLS for all web and mail transport paths\n- validate webhook and API consumers with scoped tokens only\n\n## 3) Maintain secure operations posture\n\n- keep SupportPal and dependencies updated on vendor cadence\n- harden server filesystem permissions for config and storage paths\n- encrypt and test restore of ticket/attachment backups
Any questions?
Feel free to contact us. Find all contact information on our contact page.