We are looking into some of the measures needed to comply with the new Dutch legislation on Data-leaks.
Q1) Is it possible to to have ALL actions on the production environment that have to do with a) deploying to Prod b) back-up and recovery actions to be subject to a two-person-authentication ?
Q2) How would you go about setting up MxAdmin / Security to comply with the restriction that it may NOT have any access to actual data in the App. Most specific, how can you create enough insight/reporting to satisfy the App-owner?