Announcing New Compliance Features: Data Access Controls and Single Sign-On

The importance of data security

As a Finch customer, you work closely with employment data every day, so you know that ensuring that data is secure is critical — both for compliance and to earn the trust of your customers. Data breaches can have devastating consequences for any business, including harsh fines from regulatory bodies and even lawsuits.

Implementing strict data-handling protocols and following data security best practices are essential. Finch’s new compliance features bolster data security by strengthening access controls and limiting your organization’s exposure to non-essential sensitive data.  

Single sign-on

Single sign-on, or SSO, is now available for the Finch Dashboard using Okta OIDC. This allows your organization to have more control over who can view and manage Finch connections, adding an additional layer of security to your customers’ sensitive data. 

You’ll now have the option to let your employees sign in with their Finch credentials or use SSO for added security. With SSO, your employees can access the Finch Dashboard using their company-managed credentials, reducing the risk of unauthorized access while streamlining the login experience. Instead of juggling multiple passwords, users authenticate through your organization's identity provider — ensuring that only approved individuals can manage customers’ employment data. 

This not only strengthens security by enforcing centralized authentication policies, such as multi-factor authentication (MFA) and role-based access, but also simplifies user management for IT teams. Finch SSO can help your organization maintain compliance with industry security standards while minimizing friction for authorized users.

To get started, sign in to our Help Center for our How to Implement Okta SSO guide. If you would like to request support for other SSO providers or auth protocols, please reach out to developers@tryfinch.com. You must be on a Scale plan to access this feature.

Data Access Controls

You asked and we answered! You can now customize the data retrieved from Finch endpoints with Data Access Controls. 

Data Access Controls allows your organization to configure what data is returned from the Finch API, limiting your exposure to non-essential personally identifiable information (PII) and employer data. Limiting the data Finch returns to only that which your application needs can help to limit your risk exposure and strengthen compliance with privacy regulations.

When a field is selectively disabled from the API response, it will also be removed from the permissions screen in Finch Connect that employers see during authentication, creating a more transparent onboarding experience and building trust with security-conscious employers. You can learn more about the way permissions are displayed in Finch Connect in our Developer Docs.

Get started with Finch 

If you’re an existing Finch customer, visit our Help Docs to implement Okta SSO (available on our Scale plan) or our Developer Docs to disable select fields with Data Access Controls.

Not using Finch yet? Offer your customers integrations to hundreds of HRIS and payroll systems without compromising on security. To learn more about the systems we support, visit our Integrations page or explore our Developer Docs.