One business identity. Reused everywhere.
MaiGuard ID is the identity layer for the MaiGuard platform and beyond. A business builds its identity once (its people, documents, and verified attributes), then reuses it across every product and any app that adds “Continue with MaiGuard ID,” sharing only what the holder approves.
Build once, connect anywhere, stay in control
Identity is collected once and reused with consent, so a business proves who it is without re-onboarding for every product or partner.
One identity, built a single time
A business assembles its identity in one place: directors and admins, documents in an encrypted vault, and attributes like address, tax ID, BVN and NIN.
- People, documents, and attributes
- Encrypted vault, BVN and NIN encrypted at rest
- No re-collecting the same KYB twice
Continue with MaiGuard ID
Add sign-in to any app with a standard OpenID Connect flow. Products and partners read the identity through consent, never by re-collecting it.
- Standard OIDC, no bespoke SDK
- Self-serve app registration
- Test mode, then MaiGuard review to go live
The holder decides, every time
The business approves each share per item, sees every connection, and revokes access anytime. Every action is on a full audit trail.
- Per-item consent and one-click revoke
- Documents version-pinned, no silent changes
- Complete, exportable activity log
Built for businesses, individuals, and the people who trust them
The same identity works for the business that owns it, the individuals it verifies, and the security teams that need every access on record.
Your business, verified once
Assemble the whole picture in one place: directors and admins, documents in an encrypted vault, and verified attributes like address, tax ID, BVN and NIN. Then reuse it across every product and partner, no re-onboarding.
- People, documents, and attributes on one record
- Reused across MaiGuard with consent
- No re-collecting the same KYB twice
Prove it is really you
A document check reads the ID a person presents, and a live face check matches it to them. The holder sees exactly what each app is asking for and decides, per item, before anything is shared.
- Document check plus live face match
- Per-item consent, one-click revoke
- Passkeys and two-factor on every account
Custody you can audit
Documents are encrypted at rest, so a breach yields ciphertext, not identities. Every read lands on a two-sided audit trail the holder and the integrator can both see, filter, and export.
- Encrypted at rest, version-pinned documents
- Two-sided, exportable audit trail
- Every access scoped, consented, and logged
Everything a business identity needs
From sign-in to verification to consented data sharing, on one identity.
OpenID Connect provider
Authorization-code flow with PKCE, RS256 id tokens, JWKS, and discovery. “Continue with MaiGuard ID” on any site.
Identity verification
A live face check matched against the holder’s passport photo, proving a real person stands behind the account.
Passkeys and 2FA
Passwordless passkeys, authenticator-app codes, and recovery codes protect the account and every app that trusts it.
Consent-based data sharing
Integrators request scopes; the holder approves a subset. Document shares are version-pinned and re-consented on change.
People and roles
Directors, UBOs, and admins as first-class records, invited and managed by the business.
Full audit trail
Every profile edit, document upload, and consent decision recorded, filterable, and exportable.
Add sign-in in four steps
A standard OpenID Connect integration. No proprietary SDK.
Register an app
Create OAuth credentials in the developer console: name, redirect URIs, scopes, and branding.
Add the button
Drop “Continue with MaiGuard ID” into your sign-in with a standard OIDC redirect.
The holder consents
They see exactly what you’re asking for and approve or decline, per item.
Receive the identity
Exchange the code for tokens and read the approved profile from userinfo.
Standard OIDC, in an afternoon
Register an app, redirect to authorize, exchange the code for tokens, and read the approved profile. It works with any OIDC client library.
- Authorization code + PKCE
- RS256 id tokens, verifiable via JWKS
- Discovery at /.well-known/openid-configuration
GET https://id.maiguard.com/authorize
?response_type=code
&client_id=YOUR_CLIENT_ID
&redirect_uri=https://app.example.com/callback
&scope=openid profile email businesses
&code_challenge=…&code_challenge_method=S256
POST /v1/oauth/token → { access_token, id_token }
GET /v1/oauth/userinfo → { sub, email, name, businesses }Built for how businesses actually work
Reuse KYB across products
Verify a business once, then reuse that verified identity across every MaiGuard product without re-onboarding.
Onboard partners faster
Let integrators and marketplaces pull a business’s verified attributes through consent instead of forms.
Passwordless workforce sign-in
Give a business’s team one secure identity, with passkeys and 2FA, across the tools they use.
Trust, with a paper trail
Every access is consented, scoped, and logged, so a business can prove who saw what and when.