Compliance and Certifications
A strong compliance framework is critical to the success of your security and IT programs. Passwordless technology not only allows HYPR to achieve industry validation, it enables our customers to accelerate their own compliance and regulatory requirements.
For companies doing business in the EU, meeting Strong Customer Authentication requirements under the PSD2 is mandatory as of Jan 1, 2021. HYPR provides a fast and simple way to meet PSD2 compliance by eliminating passwords and shared secrets.
HYPR adheres to NIST SP 800-63-3 Authenticator Assurance Level 3 (AAL3) requirements. HYPR platform components also make use of FIPS 140-2 validated cryptographic algorithms. In addition, HYPR leverages FIPS-Certified Trusted Platform Modules across Microsoft, Apple, and Android systems.
Fast Identity Online
HYPR sits on the FIDO Alliance Board of Directors and works alongside industry leaders such as Microsoft, Google, Samsung to influence and drive the Alliance’s mission to eliminate passwords. Earning the FIDO® Certified mark ensures interoperability and validates the integrity of a product as it adheres to FIDO Specifications. The HYPR platform has received a notable 6 certification levels which can be verified here.
“As one of the earliest innovators of FIDO solutions, HYPR brings significant in-market expertise and perspective to FIDO’s board of directors, which will help inform our collective efforts to move the world beyond passwords,”
The scope of data for GDPR includes PII such as biometric data. By leveraging a Passwordless architecture, HYPR ensures that all user credentials including biometrics are stored locally on their personal device. This approach significantly enhances data protection to support your GDPR compliance initiative.
The HYPR Control Center provides IT teams an easy way to log and manage all user authentication data necessary for Sarbanes-Oxley controls and compliance. Learn more about how HYPR performs audit logging.