{ "@context": "https://schema.org", "@type": "Dataset", "@id": "https://ciam.wiki/market-map#dataset", "name": "CIAM Market Map Dataset", "description": "A vendor-neutral map of the adjacent identity lanes around CIAM platforms — proofing, fraud, authorization, consent, non-human identity, wallets, and more — with each player's lane, category, and at-a-glance facts.", "url": "https://ciam.wiki/market-map", "creator": { "@type": "Organization", "name": "CIAM.wiki", "url": "https://ciam.wiki" }, "isAccessibleForFree": true, "license": "https://creativecommons.org/licenses/by/4.0/", "dateModified": "2026-06-23", "keywords": [ "CIAM", "customer identity", "IAM" ], "variableMeasured": [ { "@type": "PropertyValue", "name": "Player" }, { "@type": "PropertyValue", "name": "Lane" }, { "@type": "PropertyValue", "name": "Category" }, { "@type": "PropertyValue", "name": "Summary" }, { "@type": "PropertyValue", "name": "Founded" }, { "@type": "PropertyValue", "name": "Ownership" }, { "@type": "PropertyValue", "name": "HQ" } ], "distribution": [ { "@type": "DataDownload", "encodingFormat": "text/csv", "contentUrl": "https://ciam.wiki/data/ciam-market-map.csv" }, { "@type": "DataDownload", "encodingFormat": "application/json", "contentUrl": "https://ciam.wiki/data/ciam-market-map.json" } ], "columns": [ { "key": "name", "label": "Player" }, { "key": "lane", "label": "Lane" }, { "key": "category", "label": "Category" }, { "key": "summary", "label": "Summary" }, { "key": "founded", "label": "Founded" }, { "key": "ownership", "label": "Ownership" }, { "key": "hq", "label": "HQ" } ], "players": [ { "slug": "biocatch", "name": "BioCatch", "lane": "AI risk engines", "category": "Behavioral biometrics risk", "summary": "A behavioral-biometrics platform that analyzes how users physically interact (typing, mouse, touch, device handling) to detect account takeover, fraud, and social-engineering scams, used heavily in banking.", "founded": "2011", "ownership": "Permira (majority)", "hq": "New York, US / Tel Aviv", "url": "https://ciam.wiki/market-map/biocatch" }, { "slug": "darwinium", "name": "Darwinium", "lane": "AI risk engines", "category": "Edge-based AI fraud & risk decisioning", "summary": "An AI fraud-prevention and risk-decisioning platform deployed at the edge to distinguish trusted from risky human and AI behavior across the whole customer journey. Founded by ex-ThreatMetrix leadership.", "founded": "2021", "ownership": "Private; VC-backed", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/darwinium" }, { "slug": "featurespace", "name": "Featurespace (Visa)", "lane": "AI risk engines", "category": "Adaptive behavioral risk engine", "summary": "Featurespace's ARIC Risk Hub uses adaptive behavioral analytics and machine learning to score transactions and detect fraud and financial crime in real time. Acquired by Visa in December 2024.", "founded": "2008", "ownership": "Visa (acquired 2024)", "hq": "Cambridge, UK", "url": "https://ciam.wiki/market-map/featurespace" }, { "slug": "sift", "name": "Sift", "lane": "AI risk engines", "category": "Digital trust & safety (ML risk)", "summary": "A digital trust and safety platform using machine learning and a global data network to score fraud and abuse risk in real time across payments, accounts, and content.", "founded": "2011", "ownership": "Private; VC-backed (~$1B+ valuation; Insight)", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/sift" }, { "slug": "adobe-analytics", "name": "Adobe Analytics", "lane": "Analytics", "category": "Enterprise digital analytics", "summary": "An enterprise digital analytics platform for deep, multichannel measurement, part of Adobe Experience Cloud. It relies on identity stitching and consent governance to analyze customer journeys compliantly.", "founded": "2006 (Omniture; Adobe since 2009)", "ownership": "Adobe", "hq": "San Jose, US", "url": "https://ciam.wiki/market-map/adobe-analytics" }, { "slug": "amplitude", "name": "Amplitude", "lane": "Analytics", "category": "Product & digital analytics", "summary": "A digital and product analytics platform that unifies user behavior across surfaces, increasingly with CDP and experimentation features. It depends on resolved user identity and consent to attribute behavior correctly.", "founded": "2012", "ownership": "Public (Nasdaq: AMPL)", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/amplitude" }, { "slug": "google-analytics-4", "name": "Google Analytics 4", "lane": "Analytics", "category": "Web & product analytics", "summary": "Google's event-based web and app analytics platform. Identity and consent signals from CIAM govern what data may be collected and joined, making consent-mode integration central to compliant measurement.", "founded": "2020 (GA4)", "ownership": "Google (Alphabet)", "hq": "Mountain View, US", "url": "https://ciam.wiki/market-map/google-analytics-4" }, { "slug": "mixpanel", "name": "Mixpanel", "lane": "Analytics", "category": "Product analytics", "summary": "A product analytics platform for event-based behavioral analysis. It keys analysis on user identity, so CIAM-sourced identifiers and consent shape what can be tracked and joined per user.", "founded": "2009", "ownership": "Private", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/mixpanel" }, { "slug": "corbado", "name": "Corbado", "lane": "Authentication technologies", "category": "Passkey infrastructure & intelligence", "summary": "An infrastructure company that adds enterprise passkey rollouts on top of existing identity providers (Okta, Auth0, ForgeRock) without user-data migration, with analytics to drive passkey adoption.", "founded": "2022", "ownership": "Private", "hq": "Munich, Germany", "url": "https://ciam.wiki/market-map/corbado" }, { "slug": "hanko", "name": "Hanko", "lane": "Authentication technologies", "category": "Open-source passkey authentication", "summary": "An open-source authentication solution centered on passkeys, offering both a passkey API and a full auth product, self-hosted or via Hanko Cloud. European and developer-oriented.", "founded": "2018", "ownership": "Private; open-source company", "hq": "Kiel, Germany", "url": "https://ciam.wiki/market-map/hanko" }, { "slug": "hypr", "name": "HYPR", "lane": "Authentication technologies", "category": "Passwordless MFA & identity assurance", "summary": "A passwordless authentication and identity-assurance platform delivering phishing-resistant MFA, identity verification, and risk signals for both workforce and customers.", "founded": "2014", "ownership": "Private; VC-backed (Advent, Mastercard)", "hq": "New York, US", "url": "https://ciam.wiki/market-map/hypr" }, { "slug": "nok-nok-labs", "name": "Nok Nok Labs", "lane": "Authentication technologies", "category": "FIDO passwordless authentication", "summary": "A pioneer of the FIDO standards and a provider of passwordless authentication for large organizations, banks, and telcos, including delegated authentication for payments (PSD2 SCA).", "founded": "2011", "ownership": "Private", "hq": "Palo Alto, US", "url": "https://ciam.wiki/market-map/nok-nok-labs" }, { "slug": "passage", "name": "Passage (1Password)", "lane": "Authentication technologies", "category": "Passkey-first authentication", "summary": "A passkey-first, biometric-first authentication product for consumer apps, acquired by 1Password in 2022. Lets developers add passkeys without building the infrastructure.", "founded": "2021", "ownership": "1Password (acquired 2022)", "hq": "Austin, US", "url": "https://ciam.wiki/market-map/passage" }, { "slug": "yubico", "name": "Yubico", "lane": "Authentication technologies", "category": "Hardware security keys (FIDO)", "summary": "Maker of the YubiKey hardware security key and a leading contributor to FIDO2 and WebAuthn. Provides phishing-resistant, hardware-backed authentication used by major internet brands and enterprises.", "founded": "2007", "ownership": "Public (Nasdaq First North Stockholm)", "hq": "Stockholm, Sweden", "url": "https://ciam.wiki/market-map/yubico" }, { "slug": "aws-cedar", "name": "Amazon Cedar", "lane": "Authorization & policy", "category": "Open-source authorization policy language", "summary": "Cedar is an open-source policy language and evaluation engine from AWS for expressing and enforcing fine-grained authorization. It supports RBAC and ABAC with analyzable policies and is the engine behind Amazon Verified Permissions.", "founded": "2023 (open-sourced)", "ownership": "AWS (open source)", "hq": "", "url": "https://ciam.wiki/market-map/aws-cedar" }, { "slug": "authress", "name": "Authress", "lane": "Authorization & policy", "category": "Authorization & access-control API", "summary": "Authress is a cloud-based authorization and access-control API built for application developers, offering fine-grained, relationship-aware permissions as a managed service. It is built by Rhosys.", "founded": "2018", "ownership": "Private (Rhosys AG)", "hq": "Winterthur, Switzerland", "url": "https://ciam.wiki/market-map/authress" }, { "slug": "authzed", "name": "AuthZed (SpiceDB)", "lane": "Authorization & policy", "category": "ReBAC authorization (Zanzibar)", "summary": "AuthZed builds SpiceDB, an open-source database for Zanzibar-style relationship-based authorization, plus a managed cloud and enterprise offering. It targets teams that need consistent, large-scale permission checks across services.", "founded": "2020", "ownership": "Private; VC-backed (Series A, General Catalyst)", "hq": "New York, US", "url": "https://ciam.wiki/market-map/authzed" }, { "slug": "cerbos", "name": "Cerbos", "lane": "Authorization & policy", "category": "Stateless authorization (PDP)", "summary": "Cerbos is an open-source, stateless authorization layer: a policy decision point that evaluates RBAC and ABAC policies as code, deployed next to your services, with Cerbos Hub for managed policy distribution. Keeping decisions stateless avoids storing a relationship graph.", "founded": "2021", "ownership": "Private; VC-backed (seed, OMERS Ventures)", "hq": "London, UK", "url": "https://ciam.wiki/market-map/cerbos" }, { "slug": "openfga", "name": "OpenFGA", "lane": "Authorization & policy", "category": "Open-source fine-grained authorization (ReBAC)", "summary": "An open-source fine-grained authorization engine implementing Zanzibar-style relationship-based access control (ReBAC). Originated at Auth0 and donated to the CNCF, it models permissions as relationships and checks them at scale, and underpins Auth0/Okta FGA.", "founded": "2022 (project)", "ownership": "Open source (CNCF); originated at Auth0/Okta", "hq": "", "url": "https://ciam.wiki/market-map/openfga" }, { "slug": "oso", "name": "Oso", "lane": "Authorization & policy", "category": "Authorization as a service", "summary": "Oso provides authorization for application developers, starting as an open-source policy library and now centered on Oso Cloud, a managed authorization service. It supports RBAC, ABAC, and ReBAC via its Polar policy language.", "founded": "2018", "ownership": "Private; VC-backed (Sequoia, Felicis)", "hq": "New York, US", "url": "https://ciam.wiki/market-map/oso" }, { "slug": "permit-io", "name": "Permit.io", "lane": "Authorization & policy", "category": "Full-stack authorization platform", "summary": "Permit.io is a full-stack authorization platform that adds a management UI, APIs, and SDKs over open-source policy engines (OPA and Cedar), supporting RBAC, ABAC, and ReBAC. It targets teams that want to ship authorization without building the control plane.", "founded": "2020", "ownership": "Private; VC-backed (Series A, 2024)", "hq": "Tel Aviv, Israel", "url": "https://ciam.wiki/market-map/permit-io" }, { "slug": "topaz", "name": "Topaz (Aserto)", "lane": "Authorization & policy", "category": "Open-source authorization (RBAC/ABAC/ReBAC)", "summary": "Topaz is an open-source authorization engine that combines Open Policy Agent policies with a Zanzibar-style relationship directory, supporting RBAC, ABAC, and ReBAC. Built by Aserto, which adds a commercial control plane for managing policies and data across services; the project's emphasis has shifted toward the open-source Topaz.", "founded": "", "ownership": "Private (Aserto); Topaz is open source", "hq": "", "url": "https://ciam.wiki/market-map/topaz" }, { "slug": "didomi", "name": "Didomi", "lane": "Consent & privacy", "category": "Consent & preference management", "summary": "A consent and preference management platform for collecting, storing, and enforcing customer consent and communication preferences across web, app, and CRM, with a strong European presence.", "founded": "2017", "ownership": "Private; VC-backed", "hq": "Paris, France", "url": "https://ciam.wiki/market-map/didomi" }, { "slug": "ketch", "name": "Ketch", "lane": "Consent & privacy", "category": "Data permissioning & consent", "summary": "A data privacy platform centered on programmatic consent and data permissioning: collecting and enforcing consumer privacy choices across systems, with DSR automation, data mapping, and AI governance.", "founded": "2020", "ownership": "Private; VC-backed", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/ketch" }, { "slug": "onetrust", "name": "OneTrust", "lane": "Consent & privacy", "category": "Privacy, consent & governance platform", "summary": "A broad privacy, consent, and data-governance platform covering consent and preference management, data subject requests, data mapping, and GRC. The largest player in the space, widely deployed for GDPR and CCPA compliance.", "founded": "2016", "ownership": "Private; VC-backed (~$4.5B valuation)", "hq": "Atlanta, US", "url": "https://ciam.wiki/market-map/onetrust" }, { "slug": "securiti", "name": "Securiti (Veeam)", "lane": "Consent & privacy", "category": "Data privacy, security & governance", "summary": "A unified data privacy, security, and governance platform (a 'Data Command Center') covering PrivacyOps and consent alongside data security posture management and AI governance. Acquired by Veeam in 2025.", "founded": "2018", "ownership": "Veeam (acquired 2025)", "hq": "San Jose, US", "url": "https://ciam.wiki/market-map/securiti" }, { "slug": "transcend", "name": "Transcend", "lane": "Consent & privacy", "category": "Privacy & data-rights automation", "summary": "A privacy platform that automates data subject requests, consent, and data governance at the infrastructure level, propagating privacy actions across a company's systems.", "founded": "2017", "ownership": "Private; VC-backed (Accel, Index)", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/transcend" }, { "slug": "usercentrics", "name": "Usercentrics", "lane": "Consent & privacy", "category": "Consent management platform (CMP)", "summary": "A consent management platform (CMP) for capturing and documenting cookie and tracking consent across web and apps, with an extensive library of legal templates. It merged with Cookiebot (Cybot) to become a global CMP leader.", "founded": "2017", "ownership": "Private; merged with Cookiebot/Cybot (2021)", "hq": "Munich, Germany", "url": "https://ciam.wiki/market-map/usercentrics" }, { "slug": "hubspot", "name": "HubSpot", "lane": "CRM", "category": "CRM & marketing platform", "summary": "An all-in-one CRM, marketing, sales, and service platform popular with mid-market companies. It activates contact and consent data, making CIAM-sourced identity and preferences the trustworthy input to its campaigns and records.", "founded": "2006", "ownership": "Public (NYSE: HUBS)", "hq": "Cambridge, US", "url": "https://ciam.wiki/market-map/hubspot" }, { "slug": "microsoft-dynamics-365", "name": "Microsoft Dynamics 365", "lane": "CRM", "category": "CRM & business applications", "summary": "Microsoft's CRM and business-applications suite. It consumes customer identity and consent (often via Microsoft Entra External ID) to drive sales, service, and marketing within the Microsoft ecosystem.", "founded": "2016 (Dynamics 365)", "ownership": "Microsoft", "hq": "Redmond, US", "url": "https://ciam.wiki/market-map/microsoft-dynamics-365" }, { "slug": "salesforce", "name": "Salesforce", "lane": "CRM", "category": "CRM platform", "summary": "The leading customer relationship management platform. In a CIAM context it is a primary downstream consumer of identity, consent, and profile data, which feeds the unified customer record and powers consented sales, service, and marketing.", "founded": "1999", "ownership": "Public (NYSE: CRM)", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/salesforce" }, { "slug": "adobe-experience-platform", "name": "Adobe Experience Platform", "lane": "Customer data & identity resolution", "category": "Enterprise CDP / experience platform", "summary": "Adobe's data foundation and real-time CDP that ingests, unifies, and resolves customer profiles to power Adobe Experience Cloud applications. Identity stitching and consent governance underpin the real-time profile.", "founded": "", "ownership": "Adobe", "hq": "San Jose, US", "url": "https://ciam.wiki/market-map/adobe-experience-platform" }, { "slug": "amperity", "name": "Amperity", "lane": "Customer data & identity resolution", "category": "Identity-resolution-first CDP", "summary": "A customer data platform built around identity resolution: its Stitch ML combines deterministic and probabilistic matching to unify fragmented customer records across channels and formats, popular with large retail and consumer brands.", "founded": "2016", "ownership": "Private; VC-backed (~$1B+ valuation)", "hq": "Seattle, US", "url": "https://ciam.wiki/market-map/amperity" }, { "slug": "hightouch", "name": "Hightouch", "lane": "Customer data & identity resolution", "category": "Composable / warehouse-native CDP", "summary": "A composable, warehouse-native CDP that syncs customer data directly from the data warehouse (Snowflake, BigQuery, Databricks) to downstream tools, with AI decisioning, avoiding a separate data store.", "founded": "2019", "ownership": "Private; VC-backed (~$1.2B valuation)", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/hightouch" }, { "slug": "liveramp", "name": "LiveRamp", "lane": "Customer data & identity resolution", "category": "Identity resolution & data collaboration", "summary": "A data connectivity and identity-resolution platform that resolves and links customer identities across channels and partners, with data onboarding, clean rooms, and collaboration. Public on the NYSE.", "founded": "2011", "ownership": "Public (NYSE: RAMP)", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/liveramp" }, { "slug": "mparticle", "name": "mParticle (Rokt)", "lane": "Customer data & identity resolution", "category": "Customer data platform", "summary": "An end-to-end customer data platform that orchestrates customer data in real time with data activation, AI predictions, and identity resolution. Merged with Rokt in a roughly $300M deal.", "founded": "2013", "ownership": "Rokt (merged 2024)", "hq": "New York, US", "url": "https://ciam.wiki/market-map/mparticle" }, { "slug": "rudderstack", "name": "RudderStack", "lane": "Customer data & identity resolution", "category": "Warehouse-native / open-source CDP", "summary": "A developer-first, warehouse-native customer data platform with open-source roots that collects and routes event and profile data through the data warehouse to downstream tools, applying identity resolution and consent along the way.", "founded": "2019", "ownership": "Private; VC-backed (Insight, Kleiner Perkins)", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/rudderstack" }, { "slug": "salesforce-data-cloud", "name": "Salesforce Data Cloud (Data 360)", "lane": "Customer data & identity resolution", "category": "Enterprise CDP", "summary": "Salesforce's customer data platform (rebranded Data 360 in 2026), unifying and resolving customer data into profiles that power CRM, Marketing Cloud, and analytics. Identity resolution and consent are core to building the unified profile.", "founded": "", "ownership": "Salesforce", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/salesforce-data-cloud" }, { "slug": "segment", "name": "Segment (Twilio)", "lane": "Customer data & identity resolution", "category": "Customer data platform", "summary": "A customer data platform that collects, unifies, and routes first-party customer data to downstream tools, with identity resolution to stitch profiles. Acquired by Twilio in 2020.", "founded": "2012", "ownership": "Twilio (acquired 2020)", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/segment" }, { "slug": "tealium", "name": "Tealium", "lane": "Customer data & identity resolution", "category": "Customer data platform & tag management", "summary": "A customer data platform combining tag management, real-time data collection, and identity resolution to unify customer profiles and route data across the martech stack. Independent and long-established.", "founded": "2008", "ownership": "Private; VC-backed (~$1.2B valuation)", "hq": "San Diego, US", "url": "https://ciam.wiki/market-map/tealium" }, { "slug": "insider", "name": "Insider", "lane": "Customer engagement", "category": "AI customer engagement platform", "summary": "A cross-channel customer engagement platform (rebranded Insider One in late 2025) that unifies customer data and uses AI to personalize across web, app, email, and messaging. It activates consented identity and profile data for targeting.", "founded": "2012", "ownership": "Private", "hq": "Istanbul, Turkey", "url": "https://ciam.wiki/market-map/insider" }, { "slug": "salesforce-marketing-cloud", "name": "Salesforce Marketing Cloud", "lane": "Customer engagement", "category": "Enterprise marketing & engagement", "summary": "Salesforce's enterprise marketing and engagement suite for email, mobile, journeys, and advertising. It activates consented identity and profile data (often via Data Cloud) for orchestrated cross-channel engagement.", "founded": "", "ownership": "Salesforce", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/salesforce-marketing-cloud" }, { "slug": "twilio-engage", "name": "Twilio Segment Engage", "lane": "Customer engagement", "category": "CDP-powered engagement", "summary": "Twilio's engagement product built on top of the Segment CDP, letting teams build audiences from unified profiles and activate them across channels. Consent and identity resolution from the underlying CDP govern targeting.", "founded": "", "ownership": "Twilio", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/twilio-engage" }, { "slug": "braze", "name": "Braze", "lane": "Email & messaging", "category": "Cross-channel customer messaging", "summary": "A cross-channel customer engagement platform for real-time messaging across push, email, in-app, and SMS. It consumes identity, consent, and behavioral data to trigger personalized, consent-aware journeys.", "founded": "2011", "ownership": "Public (Nasdaq: BRZE)", "hq": "New York, US", "url": "https://ciam.wiki/market-map/braze" }, { "slug": "intuit-mailchimp", "name": "Intuit Mailchimp", "lane": "Email & messaging", "category": "Email marketing (SMB)", "summary": "A widely used email marketing and automation platform aimed at small and mid-size businesses, now part of Intuit. It activates contact and consent data for campaigns and basic automation.", "founded": "2001", "ownership": "Intuit (acquired 2021)", "hq": "Atlanta, US", "url": "https://ciam.wiki/market-map/intuit-mailchimp" }, { "slug": "iterable", "name": "Iterable", "lane": "Email & messaging", "category": "Cross-channel marketing engagement", "summary": "A cross-channel marketing platform for personalized email, SMS, push, and in-app messaging. It activates unified customer and consent data to orchestrate lifecycle campaigns.", "founded": "2013", "ownership": "Private; VC-backed (~$2B valuation)", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/iterable" }, { "slug": "klaviyo", "name": "Klaviyo", "lane": "Email & messaging", "category": "Email & SMS marketing (ecommerce)", "summary": "An email and SMS marketing platform built for ecommerce, with a built-in customer data store. It uses identity, consent, and behavioral data to drive segmentation and automated flows.", "founded": "2012", "ownership": "Public (NYSE: KVYO)", "hq": "Boston, US", "url": "https://ciam.wiki/market-map/klaviyo" }, { "slug": "arkose-labs", "name": "Arkose Labs", "lane": "Fraud prevention", "category": "Bot & account-abuse defense", "summary": "A platform focused on bot mitigation, account takeover, and abuse prevention that pairs real-time risk decisioning with adaptive enforcement challenges, protecting login, registration, and other identity flows.", "founded": "2015", "ownership": "Private; VC-backed (SoftBank Vision Fund 2)", "hq": "San Mateo, US", "url": "https://ciam.wiki/market-map/arkose-labs" }, { "slug": "feedzai", "name": "Feedzai", "lane": "Fraud prevention", "category": "AI financial crime & fraud prevention", "summary": "An AI-native platform for financial crime prevention that scores transactions, behavior, and identity signals in real time for fraud detection and anti-money-laundering, used by large banks and payment networks.", "founded": "2011", "ownership": "Private; VC-backed (~$2B valuation; KKR)", "hq": "Coimbra, Portugal / San Mateo, US", "url": "https://ciam.wiki/market-map/feedzai" }, { "slug": "sardine", "name": "Sardine", "lane": "Fraud prevention", "category": "Fraud & compliance platform", "summary": "A fraud and compliance platform that scores device, behavior, and identity signals in real time to stop fraud and automate AML and KYC workflows, aimed at fintech, crypto, and payments.", "founded": "2020", "ownership": "Private; VC-backed (Series C; Activant, a16z)", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/sardine" }, { "slug": "seon", "name": "SEON", "lane": "Fraud prevention", "category": "Fraud prevention & AML", "summary": "A fraud prevention and AML platform that enriches signals from email, phone, device, and digital footprint to score risk in real time, popular with fintech, iGaming, and ecommerce.", "founded": "2017", "ownership": "Private; VC-backed (Series C; Sixth Street)", "hq": "Austin, US / Budapest", "url": "https://ciam.wiki/market-map/seon" }, { "slug": "indykite", "name": "IndyKite", "lane": "Identity orchestration", "category": "Identity knowledge graph", "summary": "An identity knowledge-graph platform that unifies siloed identity and business data into a single validated data layer for trustworthy AI and access decisions. Founded by a ForgeRock co-founder.", "founded": "2021", "ownership": "Private; VC-backed (Molten, Speedinvest)", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/indykite" }, { "slug": "radiant-logic", "name": "Radiant Logic", "lane": "Identity orchestration", "category": "Identity data fabric", "summary": "Radiant Logic's RadiantOne platform unifies and virtualizes identity data across directories and systems into a single authoritative source (an identity data fabric), feeding consistent identity to downstream IAM, governance, and access. Long-established in identity data management.", "founded": "2000", "ownership": "TA Associates (PE-owned)", "hq": "Novato, US", "url": "https://ciam.wiki/market-map/radiant-logic" }, { "slug": "strata-identity", "name": "Strata Identity", "lane": "Identity orchestration", "category": "Identity orchestration (multi-cloud)", "summary": "Strata's Maverics platform orchestrates identity across multiple, incompatible identity providers, letting teams migrate IdPs, add modern auth like passwordless, and enforce consistent policy without refactoring application code. The leading standalone identity-orchestration vendor.", "founded": "2019", "ownership": "Private; VC-backed (Series B; Telstra, Menlo, Forgepoint)", "hq": "Boulder, US", "url": "https://ciam.wiki/market-map/strata-identity" }, { "slug": "alloy", "name": "Alloy", "lane": "Identity proofing", "category": "Identity decisioning & orchestration", "summary": "A decisioning platform for banks and fintechs that sits above individual verification and fraud vendors, routing onboarding and risk decisions across many data sources through configurable rules. Rather than being a single proofing engine, it orchestrates them, which places it at the boundary of proofing and orchestration.", "founded": "2015", "ownership": "Private; VC-backed (~$1.55B valuation, 2021)", "hq": "New York, US", "url": "https://ciam.wiki/market-map/alloy" }, { "slug": "au10tix", "name": "AU10TIX", "lane": "Identity proofing", "category": "Identity verification & document authentication", "summary": "AU10TIX provides proofing through automated ID document authentication, facial matching, and AML/sanctions screening with results in seconds, plus a Serial Fraud Monitor for detecting coordinated mass identity-fraud attacks and a reusable digital ID capability. It serves large consumer platforms including PayPal, Airbnb, and LinkedIn, and was selected for Microsoft's Entra Verified ID. It originated as the technology arm of airport-security firm ICTS International.", "founded": "2002", "ownership": "Private; subsidiary of ICTS International", "hq": "Tel Aviv, Israel", "url": "https://ciam.wiki/market-map/au10tix" }, { "slug": "clear", "name": "CLEAR", "lane": "Identity proofing", "category": "Reusable biometric identity network", "summary": "CLEAR (Clear Secure, Inc.) built a consumer biometric identity network used to speed screening at airports, stadiums, and venues, then extended it into the enterprise with CLEAR1, which combines selfie biometrics with document and multi-signal checks for onboarding, account recovery, and access. Its differentiator is a large pool of already-verified members whose identity can be reused across participating relying parties.", "founded": "2003 (relaunched 2010)", "ownership": "Public (NYSE: YOU)", "hq": "New York, US", "url": "https://ciam.wiki/market-map/clear" }, { "slug": "daon", "name": "Daon", "lane": "Identity proofing", "category": "Biometric identity verification & authentication", "summary": "Daon spans document and biometric verification (xProof), facial and voice authentication (xFace, xVoice), and orchestration via IdentityX and TrustX. Its Identity Continuity approach verifies a customer once, then authenticates them across web, mobile, and contact-center channels from one identity record, with deepfake and synthetic-identity defense. Customers are largely large enterprises in financial services, telecom, healthcare, travel, and government.", "founded": "2000", "ownership": "Private", "hq": "Fairfax, US", "url": "https://ciam.wiki/market-map/daon" }, { "slug": "id-me", "name": "ID.me", "lane": "Identity proofing", "category": "Reusable identity network", "summary": "ID.me is a US identity-proofing and reusable-identity provider that verifies a person through document and selfie/video checks at the NIST IAL2 assurance level. Once verified, the individual holds a credential they can reuse across many relying parties without re-proving each time. It is widely deployed across US federal and state government (IRS, SSA, VA, and many state unemployment systems) and commercial partners offering group-eligibility discounts.", "founded": "2010 (ID.me since 2013)", "ownership": "Private; VC/PE-backed (~$1.8B valuation, 2024)", "hq": "McLean, US", "url": "https://ciam.wiki/market-map/id-me" }, { "slug": "incode", "name": "Incode", "lane": "Identity proofing", "category": "AI identity verification & biometric authentication", "summary": "Incode combines document verification, passive liveness, facial recognition, deepfake detection, and a no-code orchestration layer for high-assurance, high-volume use cases in financial services, government, healthcare, and gaming. It emphasizes proprietary, in-house-built AI models over third-party data aggregation, counts customers such as Citi and HSBC, and was named a Leader in Gartner's identity-verification Magic Quadrant.", "founded": "2015", "ownership": "Private; VC-backed unicorn (~$1.25B valuation, 2021)", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/incode" }, { "slug": "iproov", "name": "iProov", "lane": "Identity proofing", "category": "Face biometric verification & liveness", "summary": "iProov's Genuine Presence Assurance and Liveness Assurance use a one-time controlled illumination sequence (Flashmark) to detect liveness and defend against spoofing, deepfakes, and injection attacks, paired with a Security Operations Center that updates defenses without customer-side changes. It is used for onboarding and authentication by governments and banks including the UK Home Office, NHS login, Singapore's national digital identity, UBS, and ING.", "founded": "2011", "ownership": "Private (Sumeru Equity Partners investment, 2022)", "hq": "London, UK", "url": "https://ciam.wiki/market-map/iproov" }, { "slug": "jumio", "name": "Jumio", "lane": "Identity proofing", "category": "Document + biometric verification", "summary": "One of the longest-running automated identity verification vendors, offering ID document checks, selfie and liveness, and risk-based decisioning, often used in regulated onboarding. It packages verification as a productized, repeatable flow and reports having processed over a billion verifications.", "founded": "2010", "ownership": "Private; PE-owned (Centana Growth Partners; Great Hill Partners)", "hq": "Sunnyvale, US", "url": "https://ciam.wiki/market-map/jumio" }, { "slug": "login-gov", "name": "Login.gov", "lane": "Identity proofing", "category": "Government identity service", "summary": "Login.gov is a shared authentication and identity-verification platform run by the GSA's Technology Transformation Services. It lets individuals use one account across multiple federal agencies, sparing each agency from building its own identity stack, and offers NIST IAL2-compliant proofing including document and live-selfie matching (certified 2024).", "founded": "2017 (IAL2-certified 2024)", "ownership": "US GSA, Technology Transformation Services (public sector)", "hq": "Washington, D.C., US", "url": "https://ciam.wiki/market-map/login-gov" }, { "slug": "mitek", "name": "Mitek Systems", "lane": "Identity proofing", "category": "Identity verification & fraud defense", "summary": "One of the original mobile-capture companies — it invented mobile check deposit — now applying that imaging heritage to identity. Its MiVIP platform composes document checks and liveness (IDLive Doc), face match and 4D biometric authentication (MiPass), and GenAI-era fraud detection into onboarding and step-up flows. It leans toward banks and regulated onboarding, where its imaging roots and large install base carry weight.", "founded": "1986", "ownership": "Public (NASDAQ: MITK)", "hq": "San Diego, US", "url": "https://ciam.wiki/market-map/mitek" }, { "slug": "onfido", "name": "Onfido (Entrust)", "lane": "Identity proofing", "category": "Document + biometric verification", "summary": "An identity verification provider built around document and biometric checks driven by its Atlas AI engine, emphasizing compliance and enterprise scale. Acquired by Entrust in April 2024, it now sits inside a broader identity and security platform.", "founded": "2012", "ownership": "Entrust (acquired 2024)", "hq": "London, UK", "url": "https://ciam.wiki/market-map/onfido" }, { "slug": "persona", "name": "Persona", "lane": "Identity proofing", "category": "Identity verification infrastructure", "summary": "An identity verification and onboarding platform built around a no-code workflow builder. Teams compose document checks, selfie and liveness, database and watchlist lookups, and risk rules into custom flows. That flexibility makes it popular with product teams that want to control the onboarding experience and tune friction by risk level, rather than adopt one packaged KYC path.", "founded": "2018", "ownership": "Private; VC-backed (Series D, May 2025, ~$2B valuation)", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/persona" }, { "slug": "plaid-idv", "name": "Plaid Identity Verification", "lane": "Identity proofing", "category": "Identity verification & KYC/AML", "summary": "Plaid Identity Verification authenticates documents (16,000+ ID types across 200 countries), matches facial biometrics/liveness, and checks regulated data sources while scoring hundreds of fraud signals, supporting KYC and AML for financial onboarding. It runs as a no-code flow, hybrid API with UI fallback, or embedded integration, and ties into Plaid's wider network with one-click 'Remember Me' reuse. It originated from Plaid's 2022 acquisition of Cognito.", "founded": "2022 (via Cognito acquisition)", "ownership": "Part of Plaid Inc. (private)", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/plaid-idv" }, { "slug": "prove", "name": "Prove", "lane": "Identity proofing", "category": "Phone-centric identity verification & authentication", "summary": "Prove (formerly Payfone) draws on mobile network operator and authoritative data to verify identities and confirm real-time device possession. Pre-Fill auto-populates onboarding forms with verified data to cut friction, and Trust Score is a real-time risk measure of a phone number and identity used to flag SIM swap, account takeover, and synthetic fraud. It is widely used by large US banks and authenticates tens of billions of transactions a year.", "founded": "2008 (Prove since 2020)", "ownership": "Private; VC/PE-backed", "hq": "New York, US", "url": "https://ciam.wiki/market-map/prove" }, { "slug": "regula", "name": "Regula", "lane": "Identity proofing", "category": "Document authentication & forensic verification", "summary": "A document-verification specialist with roots in forensic document examination, pairing software SDKs with its own hardware. Its Document Reader SDK checks IDs against a proprietary template database spanning documents from 250-plus countries and territories, and a Face SDK adds biometric match and liveness. The forensic heritage and hardware line make it common in border control and regulated onboarding where document depth matters.", "founded": "1992", "ownership": "Private", "hq": "Daugavpils, Latvia", "url": "https://ciam.wiki/market-map/regula" }, { "slug": "signicat", "name": "Signicat", "lane": "Identity proofing", "category": "European digital identity hub", "summary": "Signicat lets organizations onboard, verify, and authenticate customers across regulated European markets, connecting national and bank-issued e-IDs (such as BankID, MitID, and itsme), document and biometric proofing, fraud orchestration, and Qualified electronic signatures through one API. Founded in Norway in 2006, it operates as a Qualified Trust Service Provider under eIDAS and serves banking, insurance, payments, and gaming.", "founded": "2006", "ownership": "Owned by Nordic Capital (since 2019)", "hq": "Trondheim, Norway", "url": "https://ciam.wiki/market-map/signicat" }, { "slug": "socure", "name": "Socure", "lane": "Identity proofing", "category": "Predictive analytics identity verification", "summary": "An identity verification provider that leans on predictive analytics and a large data network to score identity and fraud risk in real time. It is strongest in the US, where it reports adoption across most top banks and card issuers, and emphasizes accuracy and synthetic-identity detection over document-centric flows.", "founded": "2012", "ownership": "Private; VC-backed (Series E 2021, ~$4.5B valuation)", "hq": "Incline Village, US", "url": "https://ciam.wiki/market-map/socure" }, { "slug": "stripe-identity", "name": "Stripe Identity", "lane": "Identity proofing", "category": "Identity verification (document + selfie)", "summary": "Stripe Identity verifies users by capturing a government-issued ID and a live selfie, which machine learning matches to detect spoofing, covering documents from 100+ countries in 53 languages and extracting name, date of birth, address, and ID numbers. It ships self-serve with no-code and API options and integrates directly with Stripe payments, billing, and payouts, using fraud signals trained on Stripe's payment network.", "founded": "2021", "ownership": "Part of Stripe, Inc. (private)", "hq": "South San Francisco, US / Dublin, Ireland", "url": "https://ciam.wiki/market-map/stripe-identity" }, { "slug": "sumsub", "name": "Sumsub", "lane": "Identity proofing", "category": "Full-cycle KYC/AML verification", "summary": "An identity verification and compliance platform that covers the full lifecycle: identity and document verification, business (KYB) checks, transaction monitoring, and AML screening in one stack. It is founder-controlled and popular with fintech and crypto buyers that want verification and ongoing compliance from a single vendor.", "founded": "2015", "ownership": "Private; founder-controlled", "hq": "London, UK / Limassol, Cyprus", "url": "https://ciam.wiki/market-map/sumsub" }, { "slug": "telesign", "name": "Telesign", "lane": "Identity proofing", "category": "Phone-number intelligence & verification", "summary": "A digital identity and programmable communications provider that turns phone-number, device, and traffic signals into real-time risk scores. Phone ID assesses a number's identity and reputation, while its Verify API runs SMS, silent-network, and multi-factor verification, framed around continuous trust rather than one-time checks. It draws on mobile-operator data through its parent's telecom network and is used by many of the world's largest brands.", "founded": "2005", "ownership": "Subsidiary of Proximus Group (Proximus Global)", "hq": "Los Angeles, US", "url": "https://ciam.wiki/market-map/telesign" }, { "slug": "trulioo", "name": "Trulioo", "lane": "Identity proofing", "category": "Global identity & business verification", "summary": "An identity verification provider focused on global coverage, verifying both individuals and businesses (KYB) across a wide range of countries and data sources through one API. It targets compliance-heavy sectors such as banking and crypto that need broad cross-border reach.", "founded": "2011", "ownership": "Private; VC-backed (unicorn 2021, ~$1.75B valuation)", "hq": "Vancouver, Canada", "url": "https://ciam.wiki/market-map/trulioo" }, { "slug": "veriff", "name": "Veriff", "lane": "Identity proofing", "category": "AI identity verification", "summary": "An identity verification provider that combines document checks, face matching, and liveness with machine-learning fraud signals. It targets fintech, crypto, and marketplace onboarding where speed and global document coverage matter, and is one of the better-known European players in the category.", "founded": "2015", "ownership": "Private; VC-backed (unicorn, Series C 2022, ~$1.5B valuation)", "hq": "Tallinn, Estonia", "url": "https://ciam.wiki/market-map/veriff" }, { "slug": "yoti", "name": "Yoti", "lane": "Identity proofing", "category": "Reusable digital ID & age assurance", "summary": "Yoti offers a free reusable Digital ID app alongside business products for identity verification, document checks, and AI-based facial age estimation that can confirm an age threshold from a selfie without an ID document. Verified attributes are stored encrypted on the user's device for privacy-preserving, attribute-level disclosure. Age estimation is deployed by platforms such as Instagram and retailers including John Lewis.", "founded": "2014", "ownership": "Private", "hq": "London, UK", "url": "https://ciam.wiki/market-map/yoti" }, { "slug": "activecampaign", "name": "ActiveCampaign", "lane": "Marketing automation", "category": "Marketing automation & email (SMB/mid-market)", "summary": "A cloud marketing automation platform combining email marketing, automation, sales CRM, and service for small and mid-size businesses, activating contact and consent data.", "founded": "2003", "ownership": "Private", "hq": "Chicago, US", "url": "https://ciam.wiki/market-map/activecampaign" }, { "slug": "adobe-marketo-engage", "name": "Adobe Marketo Engage", "lane": "Marketing automation", "category": "B2B marketing automation", "summary": "An enterprise B2B marketing automation platform for lead management, nurturing, and scoring. It consumes identity, consent, and profile data to segment and personalize at scale, part of Adobe's experience portfolio.", "founded": "2006", "ownership": "Adobe (acquired 2018)", "hq": "San Jose, US", "url": "https://ciam.wiki/market-map/adobe-marketo-engage" }, { "slug": "oracle-eloqua", "name": "Oracle Eloqua", "lane": "Marketing automation", "category": "B2B marketing automation", "summary": "A long-established B2B marketing automation platform for campaign orchestration and lead management, part of Oracle's marketing cloud. It activates consented customer and profile data for segmentation and nurturing.", "founded": "1999", "ownership": "Oracle (acquired 2012)", "hq": "Austin, US", "url": "https://ciam.wiki/market-map/oracle-eloqua" }, { "slug": "salesforce-account-engagement", "name": "Salesforce Account Engagement (Pardot)", "lane": "Marketing automation", "category": "B2B marketing automation", "summary": "Salesforce's B2B marketing automation product (formerly Pardot) for lead nurturing, scoring, and campaigns, tightly integrated with Salesforce CRM and consented customer data.", "founded": "Pardot, 2007 (Salesforce since 2013)", "ownership": "Salesforce", "hq": "San Francisco, US", "url": "https://ciam.wiki/market-map/salesforce-account-engagement" }, { "slug": "aembit", "name": "Aembit", "lane": "Non-human & agentic identity", "category": "Workload identity & access management", "summary": "Aembit provides workload identity and access management, letting services authenticate to each other and to third-party APIs without managing secrets. It issues short-lived credentials based on policy, addressing the runtime-access half of the non-human identity problem.", "founded": "2021", "ownership": "Private; VC-backed (Series A; CrowdStrike, Ten Eleven, Ballistic)", "hq": "Silver Spring, US", "url": "https://ciam.wiki/market-map/aembit" }, { "slug": "astrix", "name": "Astrix Security", "lane": "Non-human & agentic identity", "category": "Non-human & AI agent identity security", "summary": "Astrix secures non-human identities (service accounts, API keys, tokens) and AI agents by maintaining a real-time inventory across SaaS and cloud, scoring risk, and governing access. It is one of the more established NHI-security platforms and has extended into AI-agent identity.", "founded": "2021", "ownership": "Private; VC-backed (Series B; Menlo, Workday Ventures)", "hq": "New York, US / Tel Aviv", "url": "https://ciam.wiki/market-map/astrix" }, { "slug": "crowdstrike", "name": "CrowdStrike", "lane": "Non-human & agentic identity", "category": "Identity security & agentic identity (security platform)", "summary": "A major cybersecurity platform (Falcon) whose Next-Gen Identity Security adds ITDR, privileged access, and Continuous Identity for AI Agents, governing risk-aware access across human, non-human, and AI-agent identities. A security platform extending into agentic identity, not a CIAM platform.", "founded": "2011", "ownership": "Public (Nasdaq: CRWD)", "hq": "Austin, US", "url": "https://ciam.wiki/market-map/crowdstrike" }, { "slug": "entro-security", "name": "Entro Security (SailPoint)", "lane": "Non-human & agentic identity", "category": "NHI & secrets lifecycle management", "summary": "Entro Security manages the lifecycle of non-human identities and secrets, discovering service accounts, tokens, and keys, mapping their access, and governing them. It was acquired by SailPoint, folding NHI management into a broader identity-governance portfolio.", "founded": "2022", "ownership": "SailPoint (acquired)", "hq": "Boston, US", "url": "https://ciam.wiki/market-map/entro-security" }, { "slug": "oasis-security", "name": "Oasis Security", "lane": "Non-human & agentic identity", "category": "Non-human identity management", "summary": "Oasis Security provides non-human identity management, discovering and securing machine identities (service accounts, APIs, workloads) and increasingly agentic access across cloud and AI environments. It is among the better-funded entrants in the category.", "founded": "2022", "ownership": "Private; VC-backed (Series B; Craft, Sequoia, Accel)", "hq": "New York, US / Tel Aviv", "url": "https://ciam.wiki/market-map/oasis-security" }, { "slug": "spiffe-spire", "name": "SPIFFE / SPIRE", "lane": "Non-human & agentic identity", "category": "Open-source workload identity standard", "summary": "SPIFFE is an open standard for securely identifying software workloads, and SPIRE is its reference implementation, both CNCF projects. They issue short-lived, cryptographic workload identities (SVIDs) so services authenticate across heterogeneous infrastructure without shared secrets.", "founded": "2018 (CNCF project)", "ownership": "Open source (CNCF)", "hq": "", "url": "https://ciam.wiki/market-map/spiffe-spire" }, { "slug": "token-security", "name": "Token Security", "lane": "Non-human & agentic identity", "category": "Machine-first NHI & agentic AI security", "summary": "Token Security builds a machine-first platform to discover and govern non-human identities (service accounts, API tokens) and AI agents, built for the agentic-AI era. It centralizes NHI risk across cloud environments and the human-to-machine relationships behind them.", "founded": "2023", "ownership": "Private; VC-backed (Series A, Notable Capital)", "hq": "United States / Tel Aviv", "url": "https://ciam.wiki/market-map/token-security" }, { "slug": "anthropic-identity", "name": "Anthropic Identity", "lane": "Service partners", "category": "IAM implementation & managed services", "summary": "An independent identity and access management services firm offering advisory, implementation, and managed services to modernize IAM programs, with a focus on the Okta and Auth0 platforms. Unrelated to the AI company of the same name.", "founded": "", "ownership": "Private", "hq": "", "url": "https://ciam.wiki/market-map/anthropic-identity" }, { "slug": "beyondid", "name": "BeyondID", "lane": "Service partners", "category": "Managed identity services (Okta)", "summary": "A managed identity-services provider specializing in deploying and running identity solutions, best known as a leading Okta partner (Diamond/Apex tier), with a focus on regulated sectors such as financial services and healthcare. Now part of KeyData Cyber.", "founded": "2018", "ownership": "KeyData Cyber (acquired)", "hq": "", "url": "https://ciam.wiki/market-map/beyondid" }, { "slug": "deloitte", "name": "Deloitte", "lane": "Service partners", "category": "IAM & CIAM advisory and implementation", "summary": "Deloitte's identity practice spans advisory, implementation, and managed services across IAM, CIAM, IGA, and PAM. Its CIAM offering covers customer identity and profile management, passwordless and biometric authentication, consent and preference management, and fraud prevention, supported by accelerators the firm says enable 70+ use cases across six CIAM domain services. It serves large enterprises across retail, healthcare, financial services, and other regulated sectors.", "founded": "1845", "ownership": "Deloitte Touche Tohmatsu Limited (network of member firms)", "hq": "London, UK (DTTL)", "url": "https://ciam.wiki/market-map/deloitte" }, { "slug": "identity-fusion", "name": "Identity Fusion", "lane": "Service partners", "category": "IAM consulting & managed services", "summary": "An identity and access management consultancy providing IAM strategy, implementation, and managed services, plus cybersecurity assessments across industries. A smaller, specialist integrator.", "founded": "2013", "ownership": "Private", "hq": "Wesley Chapel, US", "url": "https://ciam.wiki/market-map/identity-fusion" }, { "slug": "idmworks", "name": "IDMWORKS", "lane": "Service partners", "category": "IAM services & consulting", "summary": "A vendor-agnostic identity and access management services firm that designs, implements, and runs IAM, CIAM, IGA, and PAM programs across platforms, with a long delivery track record.", "founded": "2004", "ownership": "Private", "hq": "Coral Gables, US", "url": "https://ciam.wiki/market-map/idmworks" }, { "slug": "optiv", "name": "Optiv", "lane": "Service partners", "category": "Cybersecurity solutions & IAM services", "summary": "A large cybersecurity solutions provider offering strategy, implementation, and managed services across the security stack, including a substantial identity and access management practice. Formed from the merger of Accuvant and FishNet Security.", "founded": "2015", "ownership": "Private (KKR)", "hq": "Denver, US", "url": "https://ciam.wiki/market-map/optiv" }, { "slug": "simeio", "name": "Simeio", "lane": "Service partners", "category": "Managed IAM services & orchestration", "summary": "A global IAM services firm offering advisory, implementation, and managed IAM services and IDaaS, positioned as one of the largest single-source IAM service providers. Its Simeio Identity Orchestrator adds a product layer for managing internal and external identities.", "founded": "2007", "ownership": "Private", "hq": "Atlanta, US", "url": "https://ciam.wiki/market-map/simeio" }, { "slug": "techdemocracy", "name": "TechDemocracy", "lane": "Service partners", "category": "Identity security & managed services", "summary": "A cybersecurity services firm focused on identity security and cyber-risk governance, delivering advisory, implementation, and managed services across leading IAM, IGA, and PAM platforms. It also offers Intellicta, a cyber-risk assurance tool.", "founded": "2000", "ownership": "Private", "hq": "Piscataway, US", "url": "https://ciam.wiki/market-map/techdemocracy" }, { "slug": "mattr", "name": "MATTR", "lane": "Verifiable credentials & decentralized ID", "category": "Verifiable credentials infrastructure", "summary": "A digital-trust infrastructure provider offering APIs and workflows to issue, hold, and verify verifiable credentials across sectors such as government, finance, and education, built around open standards (W3C VCs, OID4VC).", "founded": "2019", "ownership": "Private; VC-backed", "hq": "Auckland, New Zealand", "url": "https://ciam.wiki/market-map/mattr" }, { "slug": "procivis", "name": "Procivis", "lane": "Verifiable credentials & decentralized ID", "category": "e-ID & verifiable credentials (government)", "summary": "A Swiss provider of e-ID and decentralized identity infrastructure. Its Procivis One platform issues verifiable credentials (mDLs, diplomas, licenses), is open source, and aligns with eIDAS 2.0, the Swiss E-ID ecosystem, and mDL standards. A subsidiary of Orell Füssli.", "founded": "2017", "ownership": "Orell Füssli (subsidiary)", "hq": "Zurich, Switzerland", "url": "https://ciam.wiki/market-map/procivis" }, { "slug": "spruceid", "name": "SpruceID", "lane": "Verifiable credentials & decentralized ID", "category": "Open-source digital credentialing", "summary": "A technology company building open-source, standards-compliant digital credentialing infrastructure to issue, verify, revoke, and hold credentials such as mobile driver's licenses, with a focus on user-controlled identity and government credential programs.", "founded": "2020", "ownership": "Private; VC-backed (a16z)", "hq": "New York, US", "url": "https://ciam.wiki/market-map/spruceid" }, { "slug": "truvera", "name": "Truvera (Dock Labs)", "lane": "Verifiable credentials & decentralized ID", "category": "Reusable digital identity (verifiable credentials)", "summary": "A digital identity platform by Dock Labs building infrastructure for reusable digital identity with verifiable credentials, letting ID providers and enterprises share identity data without centralizing it. The platform rebranded from Dock Certs to Truvera in 2025.", "founded": "2020", "ownership": "Private (Dock Labs)", "hq": "Zug, Switzerland", "url": "https://ciam.wiki/market-map/truvera" }, { "slug": "walt-id", "name": "walt.id", "lane": "Verifiable credentials & decentralized ID", "category": "Open-source identity & wallet infrastructure", "summary": "An open-source (Apache 2) stack for decentralized identity and wallets: DID operations, verifiable credential issuance and verification, and wallet infrastructure, available self-hosted or as managed cloud. Used by tens of thousands of developers.", "founded": "2021", "ownership": "Private; open-source company", "hq": "Vienna, Austria", "url": "https://ciam.wiki/market-map/walt-id" } ] }