Skip to main content

Guardian Escrow

Guardian escrow provides an assisted recovery path with explicit policy controls.

When to use

Consumer apps that need account recovery without exposing full key custody to the provider.
Enterprise deployments that require dual control for recovery actions.

Baseline policy

Define guardian identity and authorization policy up front.
Require a second approval factor before recovery execution.
Time-bound escrow approvals and invalidate stale approvals.

Failure handling

Treat guardian unavailability as a planned scenario.
Maintain documented fallback paths and recovery SLAs.
Test fallback at least once per release cycle.

When to use
Baseline policy
Failure handling