The Profile and Privacy Dashboard for GDPR Compliance & What Else is New in the ForgeRock Identity Platform 5.5

We’re announcing our new Profile and Privacy Dashboard for GDPR Compliance this morning.  The press release has the high-level details, but there are so many new features and capabilities in our latest platform that we weren’t able to fit everything in. Let’s go feature-by-feature so we’ve got all our 5.5 platform news in one spot:

New Tools to Help Organizations Meet GDPR Compliance Goals and More

Profile and Privacy Management Dashboard: Consumers can manage all of their profile and privacy settings in one place, from their personal info, their preferences, devices, apps, privacy and consent options, their sharing preferences, what activity has taken place and account controls. This ability supports key GDPR requirements including: right to be informed, the right of access, the right of rectification, the right of erasure or the right to be forgotten, the right to restrict processing, the right of data portability, and the right to object -  all from within a convenient and centralized dashboard that consumers can use to control the use of their data.

Importantly, the Profile and Privacy Management Dashboard (see a video demo here) enables ForgeRock customers to go beyond GDPR with advanced privacy controls for consumers. What do we mean by that? Some identity vendors have put out GDPR point products in recent weeks that, in effect, enable users to demonstrate minimal, barebones compliance with the new EU privacy legislation. At ForgeRock, we believe that the GDPR is going to be a transformative watershed event that dramatically reshapes consumer expectations around privacy and personal data management globally. We designed the 5.5 platform with these realities front of mind. What it means for ForgeRock enterprise customers is that they can position themselves to aggressively compete in the emerging regulatory environment. As our CEO, Mike Ellis, put it in the press release: “Smart organizations understand the pending GDPR as a business opportunity, and not simply an onerous regulation. It’s a chance for companies to distinguish themselves in the marketplace as responsible stewards of sensitive personal data.”

Support for the new User-Managed Access (UMA) 2.0 Standard in the new platform adds to the ability to “go beyond GDPR.” UMA gives your customers and employees a convenient way to determine who and what gets access to personal data, for how long, and under what circumstances, which is especially important in the era of GDPR and other data privacy regulations that prioritize choice and control for data subjects. The UMA 2.0 standard is simple to adopt and includes an extension grant of OAuth 2.0 with additional simplicity, security, and Internet of Things benefits. All of these capabilities are key to enabling organizations use privacy as a competitive differentiator as GDPR begins to reshape the global regulatory framework for protecting personal data.

Extending CIAM to Encompass Trusted and Dynamic Interactions Across People, Services, and Things

ForgeRock is the first identity platform to offer fine-grained authentication, enabling organizations granular control in continuously assessing and improving customer experience with dynamic login choices. With ForgeRock technology, retailers, banks and other organizations can now support frictionless user experiences with real-time identity context that continuously assesses and optimize the omnichannel experience throughout the user journey. In essence, it’s now possible to shape customer experiences through the evolution of a single online session (or over multiple sessions) based on digital identity, as opposed to a one-time, monolithic decision event. What you can do, and why it’s important:

Create Rich and Dynamic Customer Experiences with Smart Authentication

Enable better, personalized and secure consumer experiences with real-time identity context that continuously assesses what the omnichannel experience should be throughout the user journey, as opposed to a one-time, monolithic decision.

Fine-Grained Authentication provides more flexibility, granular control, and increased security, by enabling organizations to continuously evaluate and offer choice in the most appropriate authentication experience for end-users and consumers, based on their needs.

Push Authorization enables consumers to securely and conveniently approve high risk transactions and events, via mobile phone notifications. This approval mechanism, is event based, increases security and reduces the threat window for malicious activity.  For example, an online bank user attempts to transfer money over a critical threshold to an existing payee. The transaction would trigger a mobile push notification, which the end user would approve using Touch ID or swipe. If the user attempted the same transaction only seconds later, the same approval would be required, to reduce malicious replay attacks.

Connect and Secure Anything

The new ForgeRock platform makes it easy to eliminate digital silos and build relationships with persistent identity that integrates, connects, and secures people, services, and things and even the edge for end-to-end security. Built on open standards, the ForgeRock Identity Platform makes it simple for organizations to create unique product offerings for their customers that incorporate trusted devices and things. From easy-to-use things registration, secure bootstrapping, pairing, authorizing access to things and sharing data, ensuring the integrity of tokens, and securing the edge, the ForgeRock Identity Platform brings carrier grade scalability, contextual security, and trusted relationships to IoT that supports on-prem, dynamic cloud architecture, and hybrid cloud deployments. New to this release includes:

  • ForgeRock Edge Security:  Hard-coded passwords, certificate-based authentication, weak encryption, and other challenges have resulted in insecure IoT deployments. Now, with ForgeRock Edge Security, organizations will be able to establish a hardware root-of-trust for their IoT deployments in order to establish and maintain trust of IoT devices and their communications, thus enabling organizations of any size to provide end-to-end security at enormous scale.
  • Social Integration & Marketing Connectors: Increase customer engagement, improve marketing campaign productivity, and build a common customer profile with real-time data aggregation from many sources such as social identity providers and marketing connectors. Popular social providers include FaceBook, LinkedIn, Google, Wordpress, Amazon, Yahoo, Microsoft Live, WeChat, VKontakte, SalesForce, Instagram, and Twitter. Marketing connectors are now included for both Marketo and Adobe Campaign.

The new functionality built into the ForgeRock Identity Platform 5.5  significantly raises the bar for what organizations should look for in a customer identity and access management (CIAM) solution. In my next post, we’ll get into specifics and explore how banks, retailers and others can leverage ForgeRock technology to create ultra-engaging omni-channel user experiences. Check back on our blog soon for updates.