Transcend

Transcend automates fulfillment of privacy requests by orchestrating data across dozens of disparate data systems - internal databases, SaaS tools, and third-party vendors. This integration allows us to automate requests in the Auth0 platform, delivering a more robust data privacy solution to our customers and their end-users. More specifically, Transcend can access and erase device profile and other metadata from authentication events, and can access user log data. Ultimately, this helps teams comply with data privacy regulations like GDPR and CCPA, and puts individuals in the driver's seat when it comes to their personal data.

Transcend allows you to programmatically access or delete user data in the Auth0 platform in accordance with data privacy regulations like GDPR and CCPA.

Setting up the Auth0 integration

Before you get started, be sure to familiarize yourself with the basics of Transcend and how the platform works. To configure the Auth0 integration, you'll want to:

1. Log in to Transcend.
2. Navigate to Data Map > Add data silo.
3. Search for and select Auth0.
4. Follow the prompts to log in to Auth0 as a user with administrative privileges. You’ll be instructed to input your client ID, client secret, and subdomain to connect Transcend to your Auth0 instance.
5. Once successfully connected, navigate to the Privacy Center tab.
6. You'll now need to map the data in Auth0 to your Data Practices. To do this:
   1. Create a new Category and a new Data Collection with the appropriate naming convention (e.g. "User profile" or "User online activities").
   2. Hit Publish.
   3. Navigate back to Data Map and click into the Auth0 data silo.
   4. Expand "Manage Datapoints" and select the Collection Label (Category) you created in the previous step from the dropdown.
   5. Note: Access and erasure data actions will be turned on by default. If you wish to disable any data actions, you can do so in this Auth0 data silo configuration widget.
7. Finally, select the identifiers by which Transcend should search for users when processing a request:
   1. While still in the Auth0 data silo, expand "Manage Identifiers".
   2. Check (or uncheck) the respective boxes for which identifiers you'd like enabled. Pro-tip: If identifiers are not enabled correctly, we may not be able to process requests for certain users. Best practice is to enable all available identifiers.

Testing

We recommend testing requests across your Data Map before you start processing requests from end-users, using an email associated with an existing user profile in Auth0.

To test, complete the following steps:

1. Log in to Transcend.
2. Navigate to Privacy Center, and select "View your Privacy Center".
3. Once it loads, click Take Control, then Download my data. You'll need to enter your email or login to authenticate yourself before submitting the request.
4. Check your email for a message from Transcend. You'll be asked to click on a verification link to verify the request.
5. Next, back in the Admin Dashboard, navigate to Incoming Requests, and select your request. If you don't see the request, contact us at support@transcend.io.
6. Once you've clicked into your request, navigate to the Data Silos tab and select Auth0.
7. Inspect the data returned. If working correctly, you should see the authentication metadata and user logs associated with the email through which you submitted the request.
8. Finally, navigate to the Report tab and click Approve and Send. You should then receive the report at the email address you submitted with the request.

Removing the Auth0 integration

To remove the Auth0 data silo from your Data Map:

1. Log in to Transcend.
2. Navigate to your Data Map, and click into Auth0.
3. At the bottom of the screen, expand "Remove Auth0".
4. Click Remove Silo. You'll be prompted to confirm that you'd like to remove the silo, click OK.
5. Confirm the silo has been removed by navigating back to your Data Map.