Security and Auth
Last updated December 3, 2025
Our Authentication is based on Auth0. Auth0 gives us: SSO (SAML/OIDC), MFA, role-based access (RBAC), secure tokens (JWT), anomaly/brute-force protection, and detailed login/audit logs.What protections are in place at Century Health
- SignIn and SSO
- SSO is implemented using SAML/OIDC with the help of Auth0
- Our application is invite only. No one can access without an invite.
- Roles and permission
- Data access and permissions to features are dependent upon the role of the user.
- Security
- Attack protection: brute-force and anomaly detection; suspicious logins are blocked or challenged.
- Strong tokens: signed JWTs; short-lived access tokens; refresh-token rotation.
- All traffic is encrypted (HTTPS/TLS).
Was this article helpful?