

Data Residency and AI Data Minimization for WSO2 Asgardeo
Go global with secure digital twins and data cloaking for WSO2 Asgardeo and Auth0.

Secure digital twins fully isolate identity profiles within a country
- Avoid regulatory barriers and cost of cross-border data transfers
- Simpler and more efficient than federating multiple orgs
- Available globally beyond your identity vendor’s regions
- Works with both Customer and Workforce identity
Seamless integration with WSO2 Asgardeo and Auth0
Digital Twins
Profile data is securely managed and isolated within a country.
Dialogs
Cloaks and uncloaks identity fields in registration, login, profile, and other forms.
Authorization
Cloaks and uncloaks claims in JWT authorization tokens.
MFA
Multi-factor authorization via email and SMS with cloaked emails and phone numbers.
APIs
Requires no code changes with SCIM 2.0 and vendor API cloaking and uncloaking of fields.
Admin
Fully integrated so only admins within a country can see uncloaked data and manage users and groups.

- Seamlessly cloak and uncloak JWT claims for MCP and A2A AI agents
- Cloak and uncloak MCP and A2A payloads governed by identity context
- Comply with EU AI Act and other data minimization requirements
- Support cross-border Sovereign AI with data leak prevention of identity claims
Support AI data minimization and cross-border Sovereign AI with claims cloaking

Flexible deployment options to meet every enterprise requirement

InCountry multi-tenant is highly scalable with failover and is available in numerous countries

InCountry single-tenant can be deployed on any cloud including AWS, Microsoft Azure, Google Cloud, Oracle Cloud, and Alibaba Cloud

AWS Outposts offers servers and racks that can be deployed anywhere and managed with the AWS Console

On-premises on any cloud for full data sovereignty requires two hosts for the application and the database
