Digital identity is the core and fundament for all digital transactions. Indeed, without it, it is impossible to control access to data and services correctly. Next to that, it is evident that the requirements/rules regarding secure digital access are changing along with the context/process, and along with the use case in which one finds itself. User contexts and privacy requirements are dynamic: access requests vary from healthcare records, to bank account data and very high to low value financial transactions. As a result, the processes by which (trans)actions need to be approved become significantly more complex – the old IAM-models (such as role based access control) are getting to their limits. Using Attribute Based Access Control and “fine-grained identity” are strategies to answer to above-mentioned challenges. At the same time you will understand they have the advantage of allowing business/compliance truly to express the rules they want to be applied during the process of granting access. This presentation will discuss the challenges mentioned and provide you insights into how you could move from your current IAM towards the world of fine-grained digital identities and ABAC.