Frequently Asked Questions
Find answers to frequently asked questions about staff device monitoring, evidence reporting, MDM setup, and compliance checks in Sprinto.
This section answers common questions related to the Staff Devices module in Sprinto, including device scoping, evidence reporting, MDM setup, and compliance checks.
General
1. What is the Staff Devices section used for? The Staff Devices section helps monitor and enforce secure configuration of devices used by employees, contractors, and consultants. It ensures compliance with security frameworks by tracking OS version, encryption, antivirus, and other key checks.
2. Which devices are included in monitoring? Any device that is in use by a staff member and scoped as Active in Sprinto is included in monitoring. Devices marked Inactive or Not-in-Scope are excluded.
Device Scoping
1. What’s the difference between Active, Inactive, and Not-in-Scope?
Active: Device has reported health status recently and is being monitored.
Inactive: Device has not reported in over 90 days or is linked to an offboarded staff member.
Not-in-Scope: Device is temporarily excluded from monitoring (e.g. pending reassignment).
2. Can I manually change a device’s scope? Yes. You can mark any device as Not-in-Scope or In-Scope from the Staff Devices tab.
Device Health Reporting
1. How does Sprinto collect device health status? Sprinto supports three methods:
Dr. Sprinto – Sprinto’s native MDM agent
Third-party MDM integrations (e.g. JAMF, Intune, Kandji)
Manual workflow checks using uploaded evidence
2. How often is device data synced?
Dr. Sprinto: Every 24 hours
Third-party MDMs: Every 24 hours
Manual workflows: As per check frequency (e.g. monthly, quarterly)
3. What happens if a device fails a check? The check appears as Failing in the Monitoring tab. Staff must update their configuration (e.g. enable encryption) and rescan or re-upload evidence to pass the check.
Evidence and Compliance Checks
1. What kind of evidence is accepted for manual checks? System screenshots, configuration reports, or approved documents that show OS version, disk encryption, antivirus, or screen lock settings.
2. Can evidence be reviewed before approval? Yes. When configuring a workflow check, you can enable the Evidence Review toggle and assign a reviewer.
3. Are checks mapped to compliance frameworks? Yes. Each device check is mapped to one or more compliance frameworks (e.g. ISO 27001, SOC 2, PCI DSS) and contributes to your audit readiness.
MDM Configuration
1. How do I set up Dr. Sprinto for my team? Navigate to Staff Devices > Overview, click Select MDM, and add Dr. Sprinto for the relevant staff types (e.g. Employees, Contractors).
2. Can I connect a third-party MDM? Yes. Sprinto supports several MDM integrations. You can connect tools like Intune, JAMF, or Sophos directly from the Staff Devices dashboard.
3. What if the MDM integration fails? If the MDM sync fails, the device will be marked Inactive and excluded from monitoring. You can retry integration or use manual workflows as a fallback.
Employee Portal
1. Can staff report their device manually? Yes. Staff can log in to the Employee Portal, click Your Devices > Report Device, and either fetch data using Dr. Sprinto or upload evidence manually.
2. Who owns the device for compliance purposes? During submission, the staff member must select the device owner—Company or Employee—which affects how it is scoped in the system.
Last updated