Admin Panel Data Access

Last updated: December 2024

This document describes what personal user data is accessible through the MCP Moira admin panel and explains why this access is necessary during the alpha testing phase.

1. Data Accessible to Administrators

1.1 User Profile Data

  • User ID - unique identifier
  • Email address - for identification and support
  • Name - if provided during registration
  • Account creation date
  • Email verification status
  • Account status (active/blocked)

1.2 Session Data

  • Active sessions - for security monitoring
  • IP address - for security and abuse prevention
  • Country (derived from IP) - for compliance
  • User agent - browser/client information for debugging
  • Session timestamps - creation and expiration

1.3 OAuth Connection Data

  • Connected OAuth providers (e.g., GitHub)
  • OAuth consent status
  • Connection timestamps

1.4 Activity Data

  • Workflow count - number of workflows created
  • Execution activity - workflow run statistics
  • Email delivery status - for troubleshooting verification issues

1.5 Audit Log

  • User actions - login, logout, workflow operations
  • Admin actions - all admin operations are logged
  • Timestamps and IP addresses - for security monitoring

2. Purpose of Admin Access

2.1 Debugging Issues

During alpha testing, we need to:

  • Investigate user-reported problems by examining session state
  • Trace execution flow through audit logs
  • Identify failed email deliveries and their causes
  • Debug OAuth connection issues

2.2 User Support

  • Manually verify email addresses when verification emails fail
  • Reset passwords for users who cannot access their email
  • Unblock incorrectly blocked accounts
  • Revoke compromised sessions

2.3 Security Monitoring

  • Detect suspicious login patterns
  • Identify potential account compromise
  • Monitor for abuse patterns
  • Track admin actions for accountability

3. Legal Basis

  • Legitimate Interest - Admin access is necessary for system operation, security, and user support
  • Contract Performance - Users agree to admin access in Terms of Service for troubleshooting
  • Legal Compliance - Audit logs support compliance with legal obligations

4. Production Plan

For production release, we plan to implement additional restrictions:

4.1 Data Minimization

  • IP address anonymization (truncate last octet)
  • Time-limited access to specific user data
  • Automatic purge of email logs after 30 days

4.2 Access Controls

  • Role-based access (viewer vs admin)
  • Mandatory justification for accessing user data
  • Regular audit of admin access logs

4.3 Data Retention

  • Audit logs retained for 90 days
  • Expired sessions automatically deleted
  • User data deleted on account deletion request

5. Your Rights

You can request information about admin access to your data by contacting us at support@moiraqq.com. Under GDPR, you have the right to:

  • Know what data we have about you
  • Request a copy of admin access logs related to your account
  • Request deletion of your personal data

For more information, see our Privacy Policy.