U-Safe
The flexible and adaptive
Security-first, flexibility as enabler
why
U-Safe is jemmic's IAM platform built on a foundation of banking-grade security, yet flexible and open enough to secure any use case and organization. From web to mobile, U-Safe embeds strong authentication and identity protection seamlessly into every user journey, without compromise.
The flexible and adaptive
OAuth 2.x & OpenID Connect
FIDO2 / Passkeys / WebAuthn
Modern REST API
PKCE • PAR • RAR • JARM
PSD2 / PSD3-ready SCA
Open
Standards
U-Safe is built on open, industry-standard protocols — ensuring interoperability, avoiding vendor lock-in, and future-proofing your identity infrastructure.
Ready for evolving OpenFinance requirements - including bLink OpenBanking, bLink OpenWealth, PSD2, and PSD3
Integration with adaptive (risk-based) authentication and fraud detection systems
Payment ecosystem integrations (e.g. Twint in Switzerland)
Standard connectors to leading core banking, e-banking, and m-banking providers, as well as custom connector options for proprietary and self-developed systems
HSM connectors for hardware-backed cryptographic operations
Integration patterns for leading identity verification providers (e.g. PXL Vision, IDnow, Intrum, Eligamo) — enabling flexible onboarding and KYC flows
U-Safe connects to the platforms and ecosystems your institution already relies on.
Deployment options
U-Safe fits your infrastructure — not the other way around. Deploy on-premises for full control, or in a private cloud for operational flexibility. Either way, your data stays where you need it.
• On-premises deployment for full infrastructure control
• Private cloud deployment for operational flexibilityStart where you are — U-Safe’s modular architecture means you can adopt individual capabilities — core authentication, OAuth 2.x / OpenID Connect, registration and onboarding, and more — without a big-bang rollout. Deploy what you need, when you need it.
Standards compliance
Built on the standards that matter:
OAuth 2.0 / OAuth 2.x
OpenID Connect Core 1.0
FIDO2 / WebAuthn (W3C)
PKCE · PAR · RAR · JARM
PSD2 / PSD3-ready SCA
Data Governance & Trust
Security-by-design principles applied at both process and technical levels
Modern cryptography and HSM integration to protect sensitive key material
Zero-trust principles governing every access decision
Privacy-enhancing features and consent-driven data usage for GDPR and nFADP compliance
Comprehensive, tamper-evident audit trail for regulators and internal compliance teams
U-Safe is the result of years of close collaboration with banks and technology partners across the Swiss and European financial ecosystem.
The jemmic community brings together financial institutions and technology partners to share knowledge, validate new capabilities, and jointly address common challenges. This is an option, not a prerequisite: U-Safe is a fully independent, production-ready IAM platform.
Co-creation initiatives are offered where they make sense — ensuring that shared investment translates into shared value across the community.
If it’s not covered here, reach out
What is U-Safe?
U-Safe is Jemmic’s identity and access management solution for financial institutions and regulated organizations.
What can U-Safe be used for?
U-Safe can be used for a secure login to mobile or web platforms. It provides capabilities for single sign-on, identity propagation, and self-service.
Does U-Safe support single sign-on?
Yes. U-Safe supports single sign-on, allowing users to access multiple applications through a secure portal experience - be it Web or mobile.
Does U-Safe support OAuth and OpenID Connect?
Yes. U-Safe supports OAuth and OpenID Connect flows for secure integration with third-party applications, and helps to propagate the identity of the user that is under the governance of the bank to a wider eco-system, enabling in particular open-banking use cases.
Can users manage their own devices?
Yes. U-Safe includes user self-service features that allow users to manage devices without always needing helpdesk support.
Can U-Safe help secure existing applications?
Yes. U-Safe can help protect existing applications with authentication, access control, and security-layer capabilities.
Does U-Safe include firewall capabilities?
Yes. U-Safe enables propagating the identity of the bank user to third-party systems. In particular, it is integrated with bLink of SIX, and can support PSD2. It can be the component you need to enable business models for Open Banking and Open Wealth.