Introduction to HERE Identity and Access Management

HERE Identity & Access Management (IAM) lets you securely authenticate identities and manage access to HERE services and resources.

This guide introduces the concepts of HERE IAM, helps you set up identities and credentials, and define fine-grained access controls.

Account and application authentication

To use HERE services, you must authenticate your account and apps and create credentials.

Defense-in-depth

By adopting a "defense-in-depth" approach to data security and privacy, HERE provides multiple layers of control measures. The HERE proprietary access management services offer granular controls at the organization, project, group, user, and application ID levels, ensuring industry standard privacy organization, and ISO-compliant levels of protection for your data and business logic IP.

HERE data privacy by design

HERE is committed to bringing and working with your data both safely and securely.

BYO (Bring Your Own) data sent to HERE is private by default. The data resides in catalogs that only you may access, and only you can authorize and initiate any data sharing. For more information about data catalog sharing and permissions, see the Data API Developer Guide.

HERE’s proprietary access management services offer granular controls at the organization, project, group, user, and application ID levels, ensuring ISO-compliant levels of protection. For more information about HERE access management controls, see the Access Manager documentation.

In addition to granular access management controls, all services must pass security compliance checks before launching, as well as undergoing periodic security reevaluations. For more information about HERE data security, see the Data API Developer Guide.