⚠ DEMO ENVIRONMENT
AuthHubAuthHub

Privacy Policy

Last updated: 19 June 2026

1. Who We Are

AuthHub is operated by Nilo Developments Limited (ODS Code: Q2D0H), registered in England. We provide Authorization-as-a-Service for healthcare organisations.

Data Controller: Nilo Developments Limited
Contact: privacy@authhub.cloud

2. What Data We Collect

Platform Users (Tenant Administrators):

  • Name, email address, and organisation (provided during registration)
  • National identity provider token claims (when authenticating via federated identity)
  • IP addresses and access timestamps (for security audit)

Authorization Data (processed on behalf of tenants):

  • Relationship tuples (subject, relation, resource identifiers)
  • Authorization evaluation requests and decisions
  • SCIM-provisioned user and group directory data
  • Audit log entries (event type, timestamp, subject, resource, decision)

Website Visitors:

  • Anonymous usage analytics via Google Analytics (page views, session duration)
  • Contact form submissions (name, email, organisation, message)

3. How We Use Your Data

  • To provide and maintain the AuthHub authorization service
  • To process authorization evaluation requests on behalf of your organisation
  • To maintain tamper-evident audit trails for governance and compliance
  • To respond to your enquiries and provide support
  • To improve the platform through anonymous usage analytics
  • To comply with legal obligations (e.g., lawful disclosure requests)

4. Legal Basis for Processing

  • Contract: Processing authorization data is necessary to fulfil our service agreement with your organisation
  • Legitimate interest: Security monitoring, fraud prevention, and service improvement
  • Legal obligation: Maintaining audit trails as required by data security standards
  • Consent: Website analytics (you can opt out via browser settings)

5. Data Processing Role

AuthHub acts as a Data Processor for authorization data processed on behalf of tenant organisations. Your organisation remains the Data Controller for any patient or staff identifiers passed through the authorization system.

We do not access, read, or interpret the content of relationship tuples beyond what is necessary to evaluate permissions. We do not store patient clinical data — only pseudonymised identifiers used for access control.

6. Data Retention

  • Authorization audit logs: Up to 7 years (configurable per tier, for DSPT compliance)
  • Relationship tuples: Retained until deleted by the tenant or subject to GDPR erasure
  • SCIM directory data: Retained while the SCIM connection is active; deleted on disconnection
  • Account data: Retained for the duration of the service agreement + 12 months
  • Contact form submissions: 24 months
  • Analytics data: 26 months (Google Analytics default)

7. Data Location & Security

  • All authorization data is stored and processed in the United Kingdom
  • Data at rest is encrypted using AES-256
  • Data in transit is protected by TLS 1.3 (mTLS for API access)
  • Optional Hardware Security Module (HSM) for key storage (Thales Luna Cloud HSM, FIPS 140-2 Level 3)
  • Tamper-evident audit trail with SHA-256 hash chaining
  • Multi-tenant namespace isolation prevents cross-organisation data access

8. Data Sharing

We do not sell, rent, or share your data with third parties except:

  • Infrastructure providers (UK-based hosting) who process data under our instruction
  • Google Analytics (anonymised website usage data — no personal identifiers)
  • Where required by law or lawful court order

9. Your Rights (UK GDPR)

You have the right to:

  • Access — Request a copy of data we hold about you
  • Rectification — Correct inaccurate data
  • Erasure — Request deletion (subject to legal retention requirements)
  • Portability — Receive your data in a machine-readable format
  • Object — Object to processing based on legitimate interest
  • Restrict — Request we limit processing in certain circumstances

For tenants: AuthHub supports automated GDPR right-to-erasure via the SubmitErasure API, which removes all relationship tuples for a specified individual and places an erasure lock.

10. Cookies & Analytics

We use Google Analytics (measurement ID: G-SST1ZXDP41) to understand how visitors use our website. This collects anonymised data including pages viewed, session duration, and approximate location. No personal identifiers are sent to Google.

You can opt out by enabling "Do Not Track" in your browser or using the Google Analytics Opt-out Browser Add-on.

11. Contact & Complaints

For privacy-related enquiries or to exercise your rights, contact us at: privacy@authhub.cloud

If you are unsatisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.