The InCommon Participant Operational Practices information below is for the Adobe SSO application, operated by Adobe, Inc. The information is current as of December 30, 2015.
Information about Adobe's identity management practices and policies regarding personal information can be found online at http://www.adobe.com/privacy/policy.html.
Adobe Support can answer questions about the Participant’s identity management system or resource access management policy or practice.
Contact Adobe Support.
3.1 What attribute information about an individual do you require in order to manage access to resources you make available to other Participants?
3.2 What use do you make of attribute information that you receive in addition to basic access control decisions?
3.3 What human and technical controls are in place on access to and use of attribute information that might refer to only one specific person (i.e., personally identifiable information)?
3.4 Describe the human and technical controls that are in place on the management of super-user and other privileged accounts that might have the authority to grant access to personally identifiable information?
Adobe uses Okta as a Service Provider, so all IDP connections go through Okta before reaching Adobe. Okta is SAML 2.0 compliant.