.avif)
Corma directly integrates with Breathe for automated software access management, user provisioning, and Identity Access Management (IAM) as a service
Breathe is a simple, powerful cloud-based HR software platform built specifically for small and medium-sized businesses in the UK. Designed to take the complexity out of everyday people management, Breathe brings together essential HR functions — including employee records, holiday and absence tracking, performance management, document storage, and onboarding workflows — into one clean, easy-to-navigate system. Rather than overwhelming HR teams with enterprise-level complexity, Breathe focuses on delivering exactly what growing businesses need to manage their people confidently, compliantly, and without unnecessary administrative overhead.
For small and mid-sized businesses, access management often falls into the space between HR and IT — acknowledged by both, fully owned by neither. New starters wait too long for the tools they need. Role changes don't always make it across to application permissions. And when someone leaves, their accounts sometimes stay active long after they do.
Corma Breathe Integration was designed to fill that gap entirely. By connecting Breathe directly to your application stack, Corma turns your HR activity into automatic access decisions — so the right people always have the right access, and the wrong people never do.
Integrating Breathe with your access management layer through Corma means your HR records become the live engine driving application permissions — automatically and continuously, without IT needing to translate HR changes into manual system updates.
When Breathe and Corma are connected, access follows the employee journey naturally. A new marketing coordinator is added to Breathe, and within minutes their access to the project tools, communication platforms, and content systems their role requires is ready and waiting. When they move into a senior position, permissions update to reflect the new responsibilities. When they hand in their notice and their end date arrives in Breathe, every account is deactivated the same day — without a single manual step.
The data Breathe holds — employment status, job titles, team memberships, start dates, and departure records — is your most accurate and up-to-date picture of your workforce. Corma makes sure your application access is an equally accurate reflection of that picture, in real time, at all times.
Without a direct connection between Breathe and your application access controls, the same problems tend to surface repeatedly:
New hires left waiting on their first day — When HR adds a new starter to Breathe but IT has to manually action that information across every business tool, delays are inevitable. Employees arrive to find accounts missing, access incomplete, and their first impression of the organization undermined before they've even settled in.
Permission profiles that grow without ever shrinking — Every promotion, team transfer, or role change adds new access without removing the old. Without Breathe driving automatic permission updates, employees accumulate a patchwork of access rights that has little to do with what their current position actually requires — violating least-privilege principles and expanding your security exposure silently.
Leaver accounts that stay open long after departure — Processing a leaver in Breathe doesn't automatically close their accounts elsewhere. Without that connection, former employees can retain active access to sensitive business systems for days, weeks, or even months — one of the most common and most preventable causes of a data breach.
No reliable view of who can access what — Across your core platforms, SaaS subscriptions, and any tools employees have adopted informally, building an accurate and current access map without a connected HR source is practically impossible. Visibility gaps quietly become compliance gaps.
Audit preparation that consumes more time than it should — GDPR, SOC2, ISO 27001, and similar frameworks all require documented evidence that access is managed properly. Without automated tracking tied to Breathe records, pulling that evidence together is a manual exercise that introduces errors and consumes resources better spent elsewhere.
Corma takes the live, accurate employee data in Breathe and uses it to drive precise, automated access decisions across every connected application in your organization.
Access ready before day one even begins — The moment a new employee record goes live in Breathe, Corma reads their role, team, and department data and provisions the corresponding application access automatically. New starters arrive to a fully set-up digital workspace — productive from the moment they sit down.
Offboarding that happens without anyone having to chase it — Corma monitors end dates and leaver records in Breathe and triggers immediate account deactivation across all connected platforms the moment employment concludes. Applications with SCIM or API support are handled automatically; for others, targeted alerts ensure no account is left open by oversight.
Permissions that reflect the job, not the history — Role-based access templates anchored to Breathe data mean every employee's application access matches their current responsibilities precisely. No lingering permissions from previous roles, no informally granted access that slips through — just clean, consistent permissions applied uniformly across your entire workforce.
A self-building audit trail that's always ready — Every access event — provisioning, updates, deactivations — is automatically logged in Corma as it happens. When an audit arrives, the evidence is already organized and waiting. No scrambling, no gaps, no last-minute document assembly.
Full visibility across your access landscape in one place — Corma's dashboard brings together each employee's Breathe status, identity provider profile, active application access, license usage, and recent activity. Mismatches, dormant accounts, and access anomalies are visible before they escalate into problems.
Build permission templates around the roles and departments defined in Breathe and let Corma apply them the moment an employee is assigned. Every person in the same role gets the same access — automatically, consistently, and without any manual configuration sitting in between.
Corma integrates natively with Breathe and works alongside platforms including BambooHR, Alexis, Altera Payroll, Access People HR, Personio, Rippling, and Deel. Start dates, team structures, and role assignments are pulled directly from Breathe to provision access completely and accurately — every time, for every new hire.
Every status update in Breathe flows immediately through Corma to identity providers like Google Workspace and Microsoft Entra, cascading through to all connected downstream applications in minutes. No scheduled syncs, no manual triggers, no overnight batch jobs — permissions are always a live reflection of your current workforce.
Access events are permanently recorded the moment they occur, building a complete, timestamped governance record without any effort from your team. Generate compliance reports on demand, schedule periodic access reviews, and present auditors with organized, comprehensive evidence of proper access management at any time.
When Breathe records a departure, Corma responds without delay — simultaneously deactivating accounts across all integrated applications. No orphaned accounts, no credentials left active by oversight, no exposure window created by slow or incomplete manual offboarding.
Traditional identity governance platforms come with implementation timelines that stretch across quarters. Corma delivers real automation from the moment setup is complete — connecting your SSO, Breathe, and identity provider in around ten minutes, with meaningful access control working immediately from there.
Corma is built around prebuilt connectors and an interface that any competent IT generalist can navigate confidently. Your existing team handles the full implementation without outside consultants, specialist certifications, or extended onboarding programs.
Because Corma maintains a continuous, live sync with Breathe, there is no gap between a status change in your HR system and the corresponding update to application access. Role changes, departures, and new starters are all reflected in permissions immediately — not when someone gets around to it.
Corma combines identity governance and SaaS management in a single dashboard, eliminating the need to manage separate tools for access control and application visibility. Everything you need to monitor, manage, and demonstrate your access program lives in one place.
Businesses including Brevo and Skello have made Corma the foundation of their IT, HR, and Finance automation — achieving significant reductions in manual onboarding and offboarding effort while maintaining accurate, secure access across their entire application portfolio.
Corma customers consistently report near elimination of orphaned accounts, dramatically fewer permission discrepancies following HR changes in Breathe, and audit preparation processes that have gone from consuming days of work to taking a matter of minutes. Whether your application stack is fully API-enabled or includes tools that require manual workflows, Corma provides complete coverage without exception.
IT and operations teams at small and mid-sized businesses who need a reliable, low-maintenance way to enforce access policies across a growing application stack — without expanding their team to do it.HR professionals using Breathe to manage the full employee lifecycle who want access management to happen automatically in the background — completely, accurately, and without IT follow-up on every change.
Compliance leads and business owners who need a continuously maintained, audit-ready record of access governance tied directly to live Breathe employment data — without dedicating significant time to building it manually.Growing businesses that need access management infrastructure that scales naturally alongside their headcount — without the IT overhead typically associated with enterprise identity governance solutions.
Initial setup takes approximately ten minutes. Once Breathe and your identity provider are connected, Corma begins surfacing access data right away. Most organizations have full automation across their application stack within a few days of getting started.
Yes, without question. Corma is designed for straightforward deployment using prebuilt connectors that work with the platforms you already use. No external consultants, no specialist training, and no extended implementation projects are needed.
Corma operates with the minimum permission scopes required for each integration, encrypts all stored credentials, and supports full access revocation at any time. Every data flow between Breathe and connected applications is managed according to enterprise-grade security standards throughout.
Absolutely. Corma reads departmental structures, team memberships, reporting relationships, and role assignments directly from Breathe and maps them to the appropriate permission templates. When organizational changes are recorded in Breathe, access updates follow automatically — no manual intervention required.
Corma's access controls, real-time audit logging, and structured access review capabilities are built to support GDPR, SOC2, ISO 27001, and any regulatory framework that requires demonstrable, documented governance of employee access rights across your application estate.
Check out other integrations that could help you on managing your software licences and accesses!
.png)
.png)
.png)