Compliance

AuthOS is self-hosted software, not a managed compliance service. The repo includes technical controls that can support your own compliance program, but your deployment, data handling, and operational controls remain your responsibility.

Technical controls present in the product

• audit logs
• MFA support
• role and permission management
• SCIM provisioning
• SIEM integrations
• data export and privacy-related endpoints

What this page does not claim

• It does not claim that AuthOS itself is SOC 2, HIPAA, or otherwise certified as a hosted service.
• It does not claim that every deployment is compliant by default.

Next steps

Review the public docs and evaluate the features against your own requirements and controls.