Access Management

CustomerOS has 3 types of user access management: our own, 3rd party SSOs and BYO (using OpenID Connect).

The most basic way of logging into CustomerOS is to provide your email and CustomerOS sends you a one-time unique login link.

This method will not automatically link any Google or Microsoft accounts with CustomerOS, and you will have to link your account separately if you wish to import your communication and user data from your email and calendar to CustomerOS.

SSO with Google & Microsoft

The recommended way of logging into CustomerOS is to use Google’s and Microsoft’s SSO feature, so that you can easily import your customer data to CustomerOS.

This method also inherits the security related to your Google or Microsoft account, such as 2FA or biometric security, so if you lose access or control of your account you can manage the security of your customer data in one place.

OpenID Connect

To enable OpenID Connect reach out to support and we will get you set up!

Finally we also support OpenID Connect as a user access management standard. We support self-hosted, open source solutions such as KeyCloak amongst others. To enable for your workspace, first create a workspace either using a Magic Link or Google/Microsoft SSO for an email address that has the same domain as you use for OpenID Connect. Once this is done then reach out to support with the following information:

We will update your workspace which will update magic link login into an OpenID connect for the domain you specify.

If you require additional login security such as 2FA or other SSO/SMAL providers, please reach out.

Certifications

CASA Type 2 (Google Security Certification)

As we provide tight integrations with Google, we are audited and certified by the CASA security standard.

We are recertified on a yearly basis, and this certification includes code vulnerability scanning.

Open Source Available

CustomerOS is Open Source Available, meaning you can audit, run, and even contribute to the code yourself. All contributions to the code are reviewed and approved by the CustomerOS team.

3rd Party Data Processors

As a European-based company, we pride ourselves on our data security and confidentiality. All data is stored encrypted and any data that leaves our own servers and applications goes to vendors that have been vetted for their own data security policies, processes and overall data safety.

For more information on which 3rd parties we work with to provide you a better experience, find more information here.

Compliance

GDPR

CustomerOS is fully compliant with GDPR. Any data removal request is possible both within your workspace and within CustomerOS as a whole.

Reach out to support if you require more information on how CustomerOS helps you remain GDPR compliant, or if you have a data removal request that we can help with as part of your, or your users rights under EU and UK law.
AccountingAPI Overview