API endpoints are protected by the industry standard OAuth2.0 for authorization and authentication. We use RBAC (Role Based Access Control) to ensure that only authorised users are able to access data.
User accounts and access management are enabled through using Auth0. This means that we leverage Auth0 to do what it is best at - using best practices in cryptography and data security, to manage user access to our systems.
We restrict access to production systems to authorised individuals only.
Updated 3 months ago