Incident response baseline (Draft)
SmartClover follows a severity-based incident process with traceable response actions and post-incident corrective governance.
Document status: Draft for security/operations reviewLast updated: 2026-02-17Owner: Security + Operations
Notification timelines and contractual obligations are defined per environment tier and agreement scope.
Severity model
| Level | Description |
|---|---|
| Severity 1 | Potential high-impact service or security incident with urgent triage requirement. |
| Severity 2 | Material operational issue requiring prioritized response and coordinated containment. |
| Severity 3 | Lower-impact issue managed through scheduled remediation and follow-up. |
Incident lifecycle
- Detection and initial triage with severity assignment.
- Containment actions and stakeholder coordination.
- Eradication and recovery with traceable execution records.
- Post-incident review, root-cause analysis, and corrective-action tracking.