SecureKey Concierge Trust Framework

//SecureKey Concierge Trust Framework
SecureKey Concierge Trust Framework 2018-04-03T10:13:24+00:00


SecureKey Technologies, Inc.
4101 Yonge Street, Suite 501
Toronto, Ontario
Canada M2P 1N6

SecureKey is a leading identity and authentication provider that simplifies consumer access to online services and applications. The privacy-enhancing SecureKey Concierge Service™ is a next generation identity and authentication network for conveniently connecting people to critical online services using a digital credential they already have and trust. SecureKey is headquartered in Toronto, with offices in Boston, Washington D.C., and San Francisco. The company is backed by a world-class group of venture and corporate investors that include strategic investments from Visa, MasterCard, Discover, Rogers Venture Partners, and Intel Capital.

Primary Contact:
Didier Serra
EVP, Sales & Marketing
+1 (650) 714-5430 (mobile)
[email protected]

Alternate Contact:
Rene McIver
Chief Security Officer
+1 (416) 568-9181 (mobile)
[email protected]

The SecureKey Concierge™ Canada Trust Framework, Version 1.0 was submitted to OIX by SecureKey Technologies Inc.. This Trust Framework summarizes the Business, Privacy, Legal and Technical aspects of SecureKey Concierge in Canada.

The SecureKey Concierge service is a cloud-based, Relying Party (RP) and Credential Provider (CP) neutral, online authentication service that enhances the security of online authentication transactions between Users and Relying Parties (RPs) through a network of trusted Credential Providers (CPs).

The Trust Framework herein outlines the following aspects of the SecureKey Concierge service in Canada:

Business overview of the service from a participant connectivity and logical communication flow point of view. A platform description and ecosystem roles and responsibilities are also presented.

Privacy aspects of SecureKey and its SecureKey Concierge service. This includes SecureKey’s Privacy by Design Ambassador status, a description of the anonymous identifiers used within SecureKey Concierge and how these identifiers are used to enable the service’s Triple-blind privacy model.

Legal aspects including a summary of contractual arrangements and the limited liability allocation among the ecosystem parties. Also outlined are a summary of the SecureKey Concierge Terms and Conditions, the Privacy Notice and Policy that are available to the User for review and acceptance, as well as ownership aspects of both User personal information and service activity data.

Technical overview of the SecureKey Concierge service including the authentication Levels of Assurance and protocols supported, the certificate governance structure, the community nature of the cloud service and technical integration aspects of the onboarding process. It is worth noting that SecureKey Concierge does not currently offer user identity information as part of the service in Canada, however, there is market interest for consumer identity services so the groundwork to support identity services in future is being made now.

The publicly-available Trust Framework aligns with SecureKey’s commitment to openness and transparency with respect to its consumer identity and authentication services. For more information on becoming a part of the SecureKey Concierge service, please visit the SecureKey Concierge site.