The Principle of Least Privilege (PoLP) is a security concept that dictates that users, applications, and systems should only have the minimal level of access necessary to perform their tasks.

This reduces the risk of unauthorized access to sensitive data and limits the potential damage from compromised accounts or malicious insiders by minimizing the attack surfaces.

In practice, this involves granting access to resources only for the required duration and ensuring that users or systems cannot access more than what they need as well as performing regular audits, setting access control policies and role-based access control (RBAC) to enforce and maintain the principle of least privilege.