Security on Particeep Plug

Particeep is certified PSEE (essential outsourced services) at several banks and insurances among which : Société Générale, Crédit Agricole and Crédit Mutuel Arkéa for example.

On what criteria has Particeep been audited?

The following points were audited and the results were satisfactory:

Concerning our applications, we respect the  OWASP (Open Web Application Security Project) standards.

Connecting Particeep Plug and its IS

Case 1 : I don't have an Api and my processes are not digitized

• You make paper documentation available to Particeep
• Particeep replicates your product in its API  the offer thus becomes accessible in an open and secured infrastructure
• You use the space provided by Particeep to configure your subscription paths
• Your processes remain unchanged

Case 2 : I have APIs or webservices

• You make the technical documentation available
• Particeep takes care of the integrations with the Plug solution
• You use the space provided by Particeep to configure your subscription paths
• Your processes remain unchanged

Case 3 : How to retrieve customer data in the Plug solution

Particeep gives you access to its API

• You can directly make requests to the api to retrieve the desired data but this requires IT development on your part.
• It is possible for Particeep to automate the retrieval of the desired data via a secure url by setting up a custom webhook.

You provide Particeep with a flat file template (csv) with the desired data and format.

• Particeep sets up an automated process to generate this flat file for consumption by your systems. No development is required on your part

Regarding authentication criteria, we respect the standards of authentication delegation via Oauth1 and 2 or macaroons for decentralised authentication.