Why do secure facilities struggle to implement proper two-person escort rules for visitors?
Secure facilities – including data centres, schools, and childcare centres – face inherent difficulties in consistently applying two-person escort rules due to the complex interplay between physical security systems, operational workflows, and evolving regulatory expectations around duty of care. As of December 2025, these facilities operate under increasing scrutiny regarding child safety (aligned with the National Principles for Child Safe Organisations) and Work Health and Safety (WHS) obligations, demanding robust visitor management.
Data centres and similar secure environments rely on layered security: perimeter controls, biometric access, CCTV surveillance, and detailed visitor logs. However, these systems are designed for *authentication* and *tracking*, not necessarily continuous, active supervision. In education and childcare, visitor management systems now commonly include Working With Children Checks (WWCC) and identity verification, but integrating this with a guaranteed two-person escort – particularly during unplanned events or emergencies – presents a significant operational challenge. Currently, audit frameworks in Australia and state-level licensing (e.g., for early childhood education) focus on *evidence* of policies, rather than real-time adherence. In the US, similar pressures exist with state licensing and compliance with frameworks like FERPA and increasingly, expectations around campus safety. Documentation of escort adherence is often reliant on manual sign-off, creating potential for gaps. Furthermore, emergency response plans often assume staff availability that may be compromised by escort duties.
This results in a situation where, despite robust policies, consistent two-person escorting is often compromised by practical constraints and the difficulty of verifying continuous compliance in real-world operations.
“`