As the world grows more connected every day, a variety of users and devices also emerge and a robust identity solution becomes an essential foundation for digital businesses.
CoffeeBean’s Identity Management Platform delivers a complete solution to securely manage the identity lifecycle of users and their data, prioritizing their overall experience and privacy.
As the world grows more connected every day, a variety of users and devices also emerge and a robust identity solution becomes an essential foundation for digital businesses.
CoffeeBean’s Identity Management Platform delivers a complete solution to securely manage the identity lifecycle of users and their data, prioritizing their overall experience and privacy.
Registration-as-a-Service
CoffeeBean’s Registration-as-a-Service (RaaS) solution offers features to register and connect your users with security, privacy and usability. RaaS can be integrated to your platforms in two different ways:
- A white-label portal that is ready-to-use and simple to customize and deploy.
- A set of APIs to allow complete customization of the registration experience and branding.
Registration and Authentication Options
Customizable Forms
Provide different ways for users to register and authenticate, including username and password, social login, One Time Password (OTP), biometrics, multi-factor and adaptive authentication.
Easily create and manage registration and data collection forms with multiple features such as real-time fields validation, age verification and password requirements, CAPTCHAs and more.
Multi-Device Support
Email Confirmation & Password Reset
Design seamless and responsive registration and authentication experiences for users who interact with your brand across desktop/laptop and mobile platforms.
RaaS supports different email confirmations and password reset flows to easily administrate the registration and login services. Among the options for password reset flows are email, security questions, messages via SMS or WhatsApp.
Progressive Profiling
Capture Consent
Set up forms to gradually capture data from users in different moments of their journey (on first contact, after the nth login, coupon redeeming). With this technique you avoid overwhelming customers with long forms during their registration process, but still get the chance to progressively build their profile.
Ask, capture and safely store information about the user’s consents during their registration process. Manage terms of service lifecycle, prompting the user to accept new terms when necessary. Track all changes for consents, permissions and terms of service. This feature helps your business comply with regulations such as GDPR.
Registration and Authentication Options
Provide different ways for users to register and authenticate, including username and password, social login, One Time Password (OTP), biometrics, multi-factor and adaptive authentication.
Customizable Forms
Easily create and manage registration and data collection forms with multiple features such as real-time fields validation, age verification and password requirements, CAPTCHAs and more.
Multi-Device Support
Design seamless and responsive registration and authentication experiences for users who interact with your brand across desktop/laptop and mobile platforms.
Email Confirmation & Password Reset
RaaS supports different email confirmations and password reset flows to easily administrate the registration and login services. Among the options for password reset flows are email, security questions, messages via SMS or WhatsApp.
Progressive Profiling
Set up forms to gradually capture data from users in different moments of their journey (on first contact, after the nth login, coupon redeeming). With this technique you avoid overwhelming customers with long forms during their registration process, but still get the chance to progressively build their profile.
Capture Consent
Ask, capture and safely store information about the user’s consents during their registration process. Manage terms of service lifecycle, prompting the user to accept new terms when necessary. Track all changes for consents, permissions and terms of service. This feature helps your business comply with regulations such as GDPR.
Self-Service Portal
The Self-Service Portal gives your users control over their personal information, security, and privacy preferences with a white-label and easy to integrate UI portal. A set of APIs is also available for full customization.
Regulatory compliance
Provide users the control to change their password, export their data, delete their account and manage their profile.
Devices and Login History
Users can have control over their connected devices and login history, improving security, access control and experience.
Privacy Settings
Let users edit their permissions, consents and other privacy settings. This feature not only helps your business comply with data regulations, but also increases the trust users have on your brand.
Authentication Settings
Enhance your employees’ or customers’ experience by giving them options on how they can authenticate, change passwords, use their social media to login, choose second factors, configure security questions, etc.
Regulatory Compliance
Provide users the control to change their password, export their data, delete their account and manage their profile.
Devices and Login History
Users can have control over their connected devices and login history, improving security, access control and experience.
Privacy Settings
Let users edit their permissions, consents and other privacy settings. This feature not only helps your business comply with data regulations, but also increases the trust users have on your brand.
Authentication Settings
Enhance your employees’ or customers’ experience by giving them options on how they can authenticate, change passwords, use their social media to login, choose second factors, configure security questions, etc.
Privacy and Consent Management
Due to new regulations (such as GDPR) and users’ concerns, privacy is an important matter for all the verticals and scenarios. Our Privacy Management solution offers different tools to meet privacy directives and adheres to regulatory constraints.
Consent Management
The Consent Management tool supports features for both your business administration and your end users:
- Users can edit consents and permissions they have previously given and also be notified when any of this information is changed.
- Companies can segment and handle their database based on the consents of users. In addition, they can notify users about changes on permissions and ask for new consents.
- Companies can manage the lifecycle of their “terms of service”, resending users acceptance requests every time there are updates.
- Companies can keep track of changes users made to their privacy settings.
Kantara Consent Receipt and User-Managed Access (UMA)
The Kantara Initiative develops specifications, recommendations and standards related to digital identity management and data privacy.
Among its specifications are the Consent Receipt and the User-Managed Access (UMA):
- Consent Receipt is record of authority granted by a Personally Identifiable Information (PII) Principal to a PII Controller for processing of the Principal’s PII. The record of consent is human-readable and can be represented as standard JSON.
- UMA is an OAuth-based access management protocol standard. Its main idea is to give users the ability to manage who has access to personal information and resources within a secure framework.
CoffeeBean follows the best practices in the market in different areas, including support of the Kantara’s Consent Receipt Specification and UMA standard.
Consent Management
The Consent Management tool supports features for both your business administration and your end users:
- Users can edit consents and permissions they have previously given and also be notified when any of this information is changed.
- Companies can segment and handle their database based on the consents of users. In addition, they can notify users about changes on permissions and ask for new consents.
- Companies can manage the lifecycle of their “terms of service”, resending users acceptance requests every time there are updates.
- Companies can keep track of changes users made to their privacy settings.
Kantara and User-Managed Access (UMA)
The Kantara Initiative develops specifications, recommendations and standards related to digital identity management and data privacy.
Among its specifications is the User-Managed Access (UMA), an OAuth-based access management protocol standard. The main idea of UMA is to give users the ability to manage who has access to personal information and resources within a secure framework.
CoffeeBean follows the best practices in the market in different areas, including support of the Kantara’s UMA standard.
Password Management
Passwords are still being largely used in many different businesses and that is why password management is a critical element to the security of any system.
Secure Storage
Password-related data is securely stored – meaning passwords are encrypted with non-reversible encryption and validation of users’ input is made by comparison of hashes.
Password Flows and Policies
This solution offers full control and different options for password reset flows: via email, token sent through SMS/WhatsApp, security questions, etc. Customize and enforce your password reset flow by specifying strength, aging, reuse, and attribute validation.
Secure Storage
Password-related data is securely stored – meaning passwords are encrypted with non-reversible encryption and validation of users’ input is made by comparison of hashes.
Password Flows and Policies
This solution offers full control and different options for password reset flows: via email, token sent through SMS/WhatsApp, security questions, etc. Customize and enforce your password reset flow by specifying strength, aging, reuse, and attribute validation.
Identity Database
CoffeeBean’s platform automatically collects, stores and manages multiple customer datasets in a flexible cloud solution. Easily integrate this database with your marketing applications for improved and personalized engagement with your customers.
Data Management
CoffeeBean provides flexible database schemas to store demographic, psychographic, behavioral and social data. This database can be managed through our dashboard or via a set of APIs.
Identity Visualization
Through the platform’s dashboard you can visualize users’ identity and their profile data to better understand their attributes, roles, devices and consents. With this tool you can also export users’ data, deactivate and delete their account.
Database Segmentation
The platform integrates with Elasticsearch to deliver a fully functional segmentation tool to help you make more sense of all collected data. Data resulting from your analysis can be integrated to marketing platforms.
Analytics and Reports
Based on the data captured and stored, CoffeeBean composes a variety of reports and analytics on its dashboard as well as on Kibana, with Elasticsearch running as our Data Analysis Engine.
Automation Engine
The Automation Engine allows you to integrate data and events (built-in and custom) with third parties’ products and technologies. Setting these automations up is made simple through our dedicated dashboard.
Data Management
CoffeeBean provides flexible database schemas to store demographic, psychographic, behavioral and social data. This database can be managed through our dashboard or via a set of APIs.
Identity Visualization
Through the platform’s dashboard you can visualize users’ identity and their profile data to better understand their attributes, roles, devices and consents. With this tool you can also export users’ data, deactivate and delete their account.
Database Segmentation
The platform integrates with Elasticsearch to deliver a fully functional segmentation tool to help you make more sense of all collected data. Data resulting from your analysis can be integrated to marketing platforms.
Analytics and Reports
Based on the data captured and stored, CoffeeBean composes a variety of reports and analytics on its dashboard as well as on Kibana, with Elasticsearch running as our Data Analysis Engine.
Automation Engine
The Automation Engine allows you to integrate data and events (built-in and custom) with third parties’ products and technologies. Setting these automations up is made simple through our dedicated dashboard.
Lifecycle Management
Manage, organize and maintain the Lifecycle of your users from the moment they are created. Our solutions lets you have a clear view of how users’ account lifecycles are being handled.
Provisioning and Deprovisioning
CoffeeBean performs the provisioning process to import current entitlement definitions from each user and customize which entitlements new users get. The deprovisioning process is important to prevent users that no longer belong to the database (former employees, for example) from having access to protected data.
Synchronization and Reconciliation
CoffeeBean provides synchronization and reconciliation services to ensure consistency and availability of data and identities across all your systems. This is done based on our features to synchronize data in real-time with the possibility of scheduled reconciliation of identity data.
Workflows and Policies
Different options for workflows, policies and APIs help customize and control user identities across lifecycle states.
SCIM Support
The System for Cross-domain Identity Management (SCIM) specification is a protocol designed to facilitate the user identity management in cloud-based applications and services.
CoffeeBean offers a set of APIs to provide SCIM support for identity provisioning, deprovisioning and management.
Provisioning and Deprovisioning
CoffeeBean performs the provisioning process to import current entitlement definitions from each user and customize which entitlements new users get. The deprovisioning process is important to prevent users that no longer belong to the database (former employees, for example) from having access to protected data.
Synchronization and Reconciliation
CoffeeBean provides synchronization and reconciliation services to ensure consistency and availability of data and identities across all your systems. This is done based on our features to synchronize data in real-time with the possibility of scheduled reconciliation of identity data.
Workflows and Policies
Different options for workflows, policies and APIs help customize and control user identities across lifecycle states.
SCIM Support
The System for Cross-domain Identity Management (SCIM) specification is a protocol designed to facilitate the user identity management in cloud-based applications and services.
CoffeeBean offers a set of APIs to provide SCIM support for identity provisioning, deprovisioning and management.
Identity Governance
The platform provides governance services for all your identities, data and privileged accesses with visibility, control and features for management, audit and compliance.
Audit Reports and Logs
CoffeeBean provides reports and logs that let you audit and control accesses being granted to users and visualize their access and activity history.
Regulatory compliance
With a centralized service where all information is at hand, attending to regulatory compliance demands such as data access requests, account deletions and access logs becomes a breeze.
Integration with 3rd Party SIEMs
The platform allows exports of logs and reports through APIs or in CSV format. Automatic integration with 3rd party SIEMs are also supported.
Audit Reports and Logs
CoffeeBean provides reports and logs that let you audit and control accesses being granted to users and visualize their access and activity history.
Regulatory compliance
With a centralized service where all information is at hand, attending to regulatory compliance demands such as data access requests, account deletions and access logs becomes a breeze.
Integration with 3rd Party SIEMs
The platform allows exports of logs and reports through APIs or in CSV format. Automatic integration with 3rd party SIEMs are also supported.