Get in touch

We use HubSpot CRM to process and manage contact and information requests. Please accept the "Functional Cookies" and reload the page to load the contact form.

Insights / Blog / Cybersecurity

Bare.ID: Identity & access management according to German security standards

September 10, 2021
Steffen RitterSteffen RitterCommercial Director Cybersecurity

The goal of our new Keycloak SaaS product Bare.ID is to close a gap in the market for IT security: It's a convenient and secure cloud solution for identity and access management for companies that need to keep their data under German control (according to the GDPR).

There are a number of initiatives that use their marks of conformity or seals to identify solutions that comply with German security and data protection regulations. With Bare.ID, we are committed to complying with the criteria of the following initiatives:

  • IT Security Made in Germany
  • Cloud services made in Germany
  • Software hosted in Germany

IT-Security made in Germany

The mark of conformity by TeleTrusT may be used by companies headquartered in Germany that commit themselves to:

  • offering trustworthy IT security solutions
  • developing and researching them in Germany
  • not using backdoors in their products
  • being GDPR and BDSG compliant

Cloud Services Made in Germany

Cloud service provider initiative with the following criteria:

  • foundation and headquarters in Germany
  • contracts with cloud service customers with service level agreements (SLA) under German law
  • court of jurisdiction for all contractual and legal matters in Germany
  • locally based, German-speaking service and support for customer inquiries

Software hosted in Germany

Requirements for using the seal:

  • hosting of data and software in data centers in Germany
  • software and personal data do not leave Germany (unless requested by the client)
  • users or clients must be explicitly informed about the use of services that transfer non-personal data abroad
  • hosting contract under German law, in particular German data protection law, German Civil Code (BGB) and German Commercial Code (HGB)
  • deposit of the respective current standard of their technical and organizational measures with regard to data protection (cf. § 9 BDSG) with BITMi e.V

With Bare.ID, AOE clearly commits to Germany as an IT location. We constantly work on becoming even better in terms of IT security and compliance for the German market. Our goal: to be able to present and prove the best possible technical standard. We are currently working on the ISO 27001 certification and participation in the TrustedCloud initiative of the German Federal Ministry for Economic Affairs and Energy.

Feel free to contact us in order to find out together whether Bare.ID might improve your company's IT security.