The topic is considered in Chapter 9 "Background checks" of the policy document on the implementation of DVO 2019/1583 , specifically, reference is made here to § 7 LuftSiG in conjunction with number 11.1.2 c of the Annex to DVO (EU) 2015/1998.
According to this, two groups of persons are to be checked:
Persons who have unsupervised and unrestricted access to the critical information and communication technology systems and data (KIKS) identified for aviation security, and
persons with administrator privileges.
External personnel do not require a security clearance procedure if the following conditions are met at the same time:
There is only irregular and short-term, and not continuous, access to the KIKS.
Permanent supervision by an internal person of equal status (e.g. also an administrator) with a valid background check and appropriate IT qualifications is ensured.
In particular, the "and" links between the conditions must be observed.