A hypothetical question:
If we bring over the left side of the email in SSO (firstname.lastname@example.org → mattie.krop) it forces the name of the user. It’s a better user experience in terms of auto-registering folks, but how does this play into privacy laws. I’m sure it depends on the privacy statements clients already acknolwege when it comes to use of platforms, but when they opt-in to give you their info it’s not necessarily to be used in a broader community.
It might seem trivial, but chopping off that email to see a first name could still feel like a breaking of boundaries.
How have your teams handled this situation? Did you opt to simply have people manually register themselves the first time (at minimum having to choose their own username) they come in through SSO?