Identity Management

As the world grows more connected every day, a variety of users and devices also emerge and a robust identity solution becomes an essential foundation for digital businesses.

CoffeeBean’s Identity Management Platform delivers a complete solution to securely manage the identity lifecycle of users and their data, prioritizing their overall experience and privacy.

Identity Management

As the world grows more connected every day, a variety of users and devices also emerge and a robust identity solution becomes an essential foundation for digital businesses.

 

CoffeeBean’s Identity Management Platform delivers a complete solution to securely manage the identity lifecycle of users and their data, prioritizing their overall experience and privacy.

RaaS

Registration-as-a-Service

CoffeeBean’s Registration-as-a-Service (RaaS) solution offers features to register and connect your users with security, privacy and usability. RaaS can be integrated to your platforms in two different ways:

  • A white-label portal that is ready-to-use and simple to customize and deploy.
  • A set of APIs to allow complete customization of the registration experience and branding.

Registration

Registration and Authentication Options

Forms

Customizable Forms

Provide different ways for users to register and authenticate, including username and password, social login, One Time Password (OTP), biometrics, multi-factor and adaptive authentication.

Easily create and manage registration and data collection forms with multiple features such as real-time fields validation, age verification and password requirements, CAPTCHAs and more.

Multi Device

Multi-Device Support

Password Reset

Email Confirmation & Password Reset

Design seamless and responsive registration and authentication experiences for users who interact with your brand across desktop/laptop and mobile platforms.

RaaS supports different email confirmations and password reset flows to easily administrate the registration and login services. Among the options for password reset flows are email, security questions, messages via SMS or WhatsApp.

Progressive

Progressive Profiling

Consent

Capture Consent

Set up forms to gradually capture data from users in different moments of their journey (on first contact, after the nth login, coupon redeeming). With this technique you avoid overwhelming customers with long forms during their registration process, but still get the chance to progressively build their profile.

Ask, capture and safely store information about the user’s consents during their registration process. Manage terms of service lifecycle, prompting the user to accept new terms when necessary. Track all changes for consents, permissions and terms of service. This feature helps your business comply with regulations such as GDPR.

Registration

Registration and Authentication Options

Provide different ways for users to register and authenticate, including username and password, social login, One Time Password (OTP), biometrics, multi-factor and adaptive authentication.

Forms

Customizable Forms

Easily create and manage registration and data collection forms with multiple features such as real-time fields validation, age verification and password requirements, CAPTCHAs and more.

Multi Device

Multi-Device Support

Design seamless and responsive registration and authentication experiences for users who interact with your brand across desktop/laptop and mobile platforms.

Password Reset

Email Confirmation & Password Reset

RaaS supports different email confirmations and password reset flows to easily administrate the registration and login services. Among the options for password reset flows are email, security questions, messages via SMS or WhatsApp.

Progressive

Progressive Profiling

Set up forms to gradually capture data from users in different moments of their journey (on first contact, after the nth login, coupon redeeming). With this technique you avoid overwhelming customers with long forms during their registration process, but still get the chance to progressively build their profile.

Consent

Capture Consent

Ask, capture and safely store information about the user’s consents during their registration process. Manage terms of service lifecycle, prompting the user to accept new terms when necessary. Track all changes for consents, permissions and terms of service. This feature helps your business comply with regulations such as GDPR.

Self Service Portal

Self-Service Portal

The Self-Service Portal gives your users control over their personal information, security, and privacy preferences with a white-label and easy to integrate UI portal. A set of APIs is also available for full customization.

Regulatory

Regulatory compliance

Provide users the control to change their password, export their data, delete their account and manage their profile.

History

Devices and Login History

Users can have control over their connected devices and login history, improving security, access control and experience.

Privacy

Privacy Settings

Let users edit their permissions, consents and other privacy settings. This feature not only helps your business comply with data regulations, but also increases the trust users have on your brand.

Authentication

Authentication Settings

Enhance your employees’ or customers’ experience by giving them options on how they can authenticate, change passwords, use their social media to login, choose second factors, configure security questions, etc.

Regulatory

Regulatory Compliance

Provide users the control to change their password, export their data, delete their account and manage their profile.

History

Devices and Login History

Users can have control over their connected devices and login history, improving security, access control and experience.

Privacy

Privacy Settings

Let users edit their permissions, consents and other privacy settings. This feature not only helps your business comply with data regulations, but also increases the trust users have on your brand.

Authentication

Authentication Settings

Enhance your employees’ or customers’ experience by giving them options on how they can authenticate, change passwords, use their social media to login, choose second factors, configure security questions, etc.

Privacy Management

Privacy and Consent Management

Due to new regulations (such as GDPR) and users’ concerns, privacy is an important matter for all the verticals and scenarios. Our Privacy Management solution offers different tools to meet privacy directives and adheres to regulatory constraints.

Privacy Management

Consent Management

The Consent Management tool supports features for both your business administration and your end users:

  • Users can edit consents and permissions they have previously given and also be notified when any of this information is changed.
  • Companies can segment and handle their database based on the consents of users. In addition, they can notify users about changes on permissions and ask for new consents.
  • Companies can manage the lifecycle of their “terms of service”, resending users acceptance requests every time there are updates.
  • Companies can keep track of changes users made to their privacy settings.

UMA

Kantara Consent Receipt and User-Managed Access (UMA)

The Kantara Initiative develops specifications, recommendations and standards related to digital identity management and data privacy.
Among its specifications are the Consent Receipt and the User-Managed Access (UMA):

  • Consent Receipt is record of authority granted by a Personally Identifiable Information (PII) Principal to a PII Controller for processing of the Principal’s PII. The record of consent is human-readable and can be represented as standard JSON.
  • UMA is an OAuth-based access management protocol standard. Its main idea is to give users the ability to manage who has access to personal information and resources within a secure framework.

CoffeeBean follows the best practices in the market in different areas, including support of the Kantara’s Consent Receipt Specification and UMA standard.

Privacy Management

Consent Management

The Consent Management tool supports features for both your business administration and your end users:

  • Users can edit consents and permissions they have previously given and also be notified when any of this information is changed.
  • Companies can segment and handle their database based on the consents of users. In addition, they can notify users about changes on permissions and ask for new consents.
  • Companies can manage the lifecycle of their “terms of service”, resending users acceptance requests every time there are updates.
  • Companies can keep track of changes users made to their privacy settings.

UMA

Kantara and User-Managed Access (UMA)

The Kantara Initiative develops specifications, recommendations and standards related to digital identity management and data privacy.

Among its specifications is the User-Managed Access (UMA), an OAuth-based access management protocol standard. The main idea of UMA is to give users the ability to manage who has access to personal information and resources within a secure framework.

CoffeeBean follows the best practices in the market in different areas, including support of the Kantara’s UMA standard.

Password Management

Password Management

Passwords are still being largely used in many different businesses and that is why password management is a critical element to the security of any system.

Secure Storage

Secure Storage

Password-related data is securely stored – meaning passwords are encrypted with non-reversible encryption and validation of users’ input is made by comparison of hashes.

Password

Password Flows and Policies

This solution offers full control and different options for password reset flows: via email, token sent through SMS/WhatsApp, security questions, etc. Customize and enforce your password reset flow by specifying strength, aging, reuse, and attribute validation.

Secure Storage

Secure Storage

Password-related data is securely stored – meaning passwords are encrypted with non-reversible encryption and validation of users’ input is made by comparison of hashes.

Password

Password Flows and Policies

This solution offers full control and different options for password reset flows: via email, token sent through SMS/WhatsApp, security questions, etc. Customize and enforce your password reset flow by specifying strength, aging, reuse, and attribute validation.

Identity Database

Identity Database

CoffeeBean’s platform automatically collects, stores and manages multiple customer datasets in a flexible cloud solution. Easily integrate this database with your marketing applications for improved and personalized engagement with your customers.

Data Management

Data Management

CoffeeBean provides flexible database schemas to store demographic, psychographic, behavioral and social data. This database can be managed through our dashboard or via a set of APIs.

Identity

Identity Visualization

Through the platform’s dashboard you can visualize users’ identity and their profile data to better understand their attributes, roles, devices and consents. With this tool you can also export users’ data, deactivate and delete their account.

Segmentation

Database Segmentation

The platform integrates with Elasticsearch to deliver a fully functional segmentation tool to help you make more sense of all collected data. Data resulting from your analysis can be integrated to marketing platforms.

Analytics

Analytics and Reports

Based on the data captured and stored, CoffeeBean composes a variety of reports and analytics on its dashboard as well as on Kibana, with Elasticsearch running as our Data Analysis Engine.

Automation

Automation Engine

The Automation Engine allows you to integrate data and events (built-in and custom) with third parties’ products and technologies. Setting these automations up is made simple through our dedicated dashboard.

Data Management

Data Management

CoffeeBean provides flexible database schemas to store demographic, psychographic, behavioral and social data. This database can be managed through our dashboard or via a set of APIs.

Identity

Identity Visualization

Through the platform’s dashboard you can visualize users’ identity and their profile data to better understand their attributes, roles, devices and consents. With this tool you can also export users’ data, deactivate and delete their account.

Segmentation

Database Segmentation

The platform integrates with Elasticsearch to deliver a fully functional segmentation tool to help you make more sense of all collected data. Data resulting from your analysis can be integrated to marketing platforms.

Analytics

Analytics and Reports

Based on the data captured and stored, CoffeeBean composes a variety of reports and analytics on its dashboard as well as on Kibana, with Elasticsearch running as our Data Analysis Engine.

Automation

Automation Engine

The Automation Engine allows you to integrate data and events (built-in and custom) with third parties’ products and technologies. Setting these automations up is made simple through our dedicated dashboard.

Lifecycle Management

Lifecycle Management

Manage, organize and maintain the Lifecycle of your users from the moment they are created. Our solutions lets you have a clear view of how users’ account lifecycles are being handled.

Lifecycle

Provisioning and Deprovisioning

Provisioning and Deprovisioning

CoffeeBean performs the provisioning process to import current entitlement definitions from each user and customize which entitlements new users get. The deprovisioning process is important to prevent users that no longer belong to the database (former employees, for example) from having access to protected data.

Synchronization and Reconciliation

Synchronization and Reconciliation

CoffeeBean provides synchronization and reconciliation services to ensure consistency and availability of data and identities across all your systems. This is done based on our features to synchronize data in real-time with the possibility of scheduled reconciliation of identity data.

Workflows and Policies

Workflows and Policies

Different options for workflows, policies and APIs help customize and control user identities across lifecycle states.

SCIM

SCIM Support

The System for Cross-domain Identity Management (SCIM) specification is a protocol designed to facilitate the user identity management in cloud-based applications and services.
CoffeeBean offers a set of APIs to provide SCIM support for identity provisioning, deprovisioning and management.

Provisioning and Deprovisioning

Provisioning and Deprovisioning

CoffeeBean performs the provisioning process to import current entitlement definitions from each user and customize which entitlements new users get. The deprovisioning process is important to prevent users that no longer belong to the database (former employees, for example) from having access to protected data.

Synchronization and Reconciliation

Synchronization and Reconciliation

CoffeeBean provides synchronization and reconciliation services to ensure consistency and availability of data and identities across all your systems. This is done based on our features to synchronize data in real-time with the possibility of scheduled reconciliation of identity data.

Workflows and Policies

Workflows and Policies

Different options for workflows, policies and APIs help customize and control user identities across lifecycle states.

SCIM

SCIM Support

The System for Cross-domain Identity Management (SCIM) specification is a protocol designed to facilitate the user identity management in cloud-based applications and services.
CoffeeBean offers a set of APIs to provide SCIM support for identity provisioning, deprovisioning and management.

Identity Governance

Identity Governance

The platform provides governance services for all your identities, data and privileged accesses with visibility, control and features for management, audit and compliance.

Identity-Management-Governance

Audit reports and logs

Audit Reports and Logs

CoffeeBean provides reports and logs that let you audit and control accesses being granted to users and visualize their access and activity history.

Regulatory compliance

Regulatory compliance

With a centralized service where all information is at hand, attending to regulatory compliance demands such as data access requests, account deletions and access logs becomes a breeze.

Integration with 3rd Party SIEMs

Integration with 3rd Party SIEMs

The platform allows exports of logs and reports through APIs or in CSV format. Automatic integration with 3rd party SIEMs are also supported.

Audit reports and logs

Audit Reports and Logs

CoffeeBean provides reports and logs that let you audit and control accesses being granted to users and visualize their access and activity history.

Regulatory compliance

Regulatory compliance

With a centralized service where all information is at hand, attending to regulatory compliance demands such as data access requests, account deletions and access logs becomes a breeze.

Integration with 3rd Party SIEMs

Integration with 3rd Party SIEMs

The platform allows exports of logs and reports through APIs or in CSV format. Automatic integration with 3rd party SIEMs are also supported.