Appruve uses controls information access using a least privilege system allowing only authorised users access the platform based on their roles

All Appruve access controls are borrowed from NIST SP 800 access control principles.

To enforce roles, we integrate tools that use the latest OpenID Connect (OIDC) standards. The infrastructure is designed to be strict in enforcing permission and access control policies.

User authentication for data exchanges, sessions and request on the platform uses a token-based authentication system based on SSL/TLS protocols. We grant limited access to our APIS based on OAUTH2 tokens.

All data requests are encrypted using https standards.

If you think that you have found a security issue, please submit a bug report to us at

We will get in touch and take all reports seriously.
Was this article helpful?
Thank you!