Effective date: July 11, 2026 · All Access IDM, LLC · hello@allaccessidm.com
All Access IDM, LLC ("All Access IDM," "we," "us") provides identity governance and access review software to community and regional financial institutions. This Privacy Policy describes how we collect, use, and protect information when you use our website (aaidm.com) and the All Access IDM platform.
When you use the platform, you import user account data from your institution's systems (core banking, Active Directory, ancillary applications) into All Access IDM for the purpose of access review reporting. This data is processed solely to provide the service to you and is never used for any other purpose.
When you use the optional AI-assisted import mapping feature, the column header names from your CSV file (field names only — not data values) are transmitted to Anthropic, PBC to identify the appropriate field mapping. No employee names, account identifiers, or other data values are included in this transmission. Use of this feature is voluntary; you may configure import mappings manually without it.
During signup, we retrieve your institution's publicly available asset size and registration data from the FDIC or NCUA to determine your subscription tier. We do not store this beyond what is necessary to maintain your account record.
We log standard server access logs (IP address, page accessed, timestamp) for security monitoring and troubleshooting. We do not use third-party analytics services.
We do not use your data or your institution's data for advertising, marketing profiling, or sale to third parties.
We do not sell, rent, or share your information with third parties except as follows:
We implement security controls appropriate for financial services software, including encrypted connections (TLS), access controls, and audit logging. Specific security documentation is available upon request for exam or due diligence purposes.
No system is perfectly secure. We will notify affected customers without undue delay in the event of a data breach that may affect their information.
We retain account data for the duration of your subscription and for 90 days after termination, during which you may request a data export. After 90 days, your data is permanently deleted from our systems.
Server logs are retained for up to 90 days for security purposes.
You may request access to, correction of, or deletion of your account data at any time by contacting hello@allaccessidm.com. Deletion requests will be honored within 30 days, subject to any legal retention obligations.
The All Access IDM platform uses a session cookie to maintain your logged-in state. We do not use tracking cookies, advertising cookies, or third-party analytics cookies on this website.
All Access IDM is a business-to-business service intended for use by financial institutions and their employees. We do not knowingly collect information from individuals under 18 years of age.
We may update this Privacy Policy from time to time. We will notify customers by email before material changes take effect. The current version is always available at aaidm.com/privacy.
Privacy questions or requests: hello@allaccessidm.com
All Access IDM, LLC · Texas, USA