Skip to content
More support
Raise A Ticket
  • There are no suggestions because the search field is empty.

The importance of named user logins

Why are named user logins so important when accessing NewZapp? Particularly for organisations with formal governance, information security, data protection or audit requirements. This article is especially relevant for larger organisations such as NHS bodies, local authorities, universities, colleges, public sector organisations, charities and enterprise teams, where shared system access is often discouraged or prohibited by internal policy.

 Why named user logins matter

A named user login means that each person accessing NewZapp uses their own individual account, rather than several people sharing one generic login such as “marketing@”, “comms@” or “admin@”.

While shared logins can seem convenient, they create avoidable risks around security, accountability, governance and compliance.

National Cyber Security Centre governance on SaaS security. 

NCSC expects:

  • each real person has their own login
  • each user is uniquely identifiable
  • access is linked to that person’s identity
  • permissions are granted through roles, groups, or policies
  • audit logs show which named user did what
  • users can be individually onboarded, changed, suspended, or removed

For more information please follow this link.

1. Clear accountability

With named user logins, actions can be linked to the individual who carried them out.

This helps organisations understand who:

  • Created or edited a campaign
  • Uploaded or changed data
  • Sent a communication
  • Accessed reports
  • Changed account settings
  • Exported or downloaded information

This is important for internal audit, data protection reviews, incident investigation and general good governance.

With a shared login, it can be difficult or impossible to confirm who performed a specific action.

2. Better data protection and governance

Many organisations have obligations under data protection, information governance and cyber security policies to control access to systems that hold or process personal data.

Named user access supports this by helping organisations demonstrate that:

  • Access is granted only to appropriate people
  • Users have access levels suitable for their role
  • Activity can be reviewed if required
  • Leavers can be removed without disrupting the whole team
  • Shared credentials are not being passed around informally

For sectors such as the NHS, local government and education, this often aligns with existing internal governance expectations.

3. Reduced risk when people leave or change roles

Staff movement is normal. People leave, change departments, move projects or no longer need access.

Named user logins make this much easier to manage.

If someone leaves the organisation, their individual access can be removed without affecting anyone else. With a shared login, the password may need to be changed and redistributed, and there is still a risk that former users may know or retain the credentials.

Named logins keep access cleaner, safer and easier to control.

4. Stronger security

Shared logins often lead to shared passwords, saved credentials, informal forwarding of access details and weaker control over who can get into an account.

Named user logins help reduce these risks.

They also support stronger security practices such as:

  • Role-based permissions
  • Password control
  • Multi-factor authentication where available
  • User-level access reviews
  • Faster response if suspicious activity is identified

In simple terms: one person, one login, one clear record.

5. Easier auditing and investigation

If an issue occurs, such as an email being sent in error, data being changed, or an account setting being updated, named user access gives the organisation a clearer audit trail.

This helps answer important questions quickly:

  • Who made the change?
  • When did it happen?
  • Was it expected?
  • Was the user authorised?
  • Does any follow-up action need to be taken?

Without named access, these questions become much harder to answer.

6. Supports internal policy requirements

Many larger organisations already have policies that require individual access to systems, particularly where personal data, communications data or customer records are involved.

This may include policies covering:

  • Information governance
  • Cyber security
  • Data protection
  • Acceptable use
  • Records management
  • Supplier assurance
  • Audit and compliance
  • Access control
  • Leavers and movers processes

Using named user logins in NewZapp helps support these requirements and makes it easier for teams to evidence good practice.

7. Avoids unnecessary operational risk

Shared accounts can create practical problems as well as security risks.

For example:

  • A password change can lock out the whole team
  • It may be unclear who owns an action
  • Access may continue for people who no longer need it
  • Credentials may be stored or shared insecurely
  • Internal audit teams may challenge the use of shared access

Named user logins reduce these issues and make account management more straightforward.

What we recommend

Each person who needs to access NewZapp should have their own named user login.

Access should be reviewed regularly, especially when people join, leave or change role.

In summary

Named user logins are not just an administrative preference. They are an important part of good security, clear accountability and responsible data governance.

For organisations such as NHS bodies, councils, universities and other larger teams, named access helps support existing governance expectations and gives both the organisation and its users better protection.

It is a simple step that significantly improves control, transparency and trust.