Security & Compliance
Enterprise-grade protection for your most sensitive hiring data.
Encryption Everywhere
TLS 1.3 in transit. AES-256 at rest. Your data is always protected.
Role-Based Access
Granular permissions ensure only authorized users see candidate data.
AWS Infrastructure
Built on AWS with SOC 2, ISO 27001, and GDPR-compliant architecture.
Data Protection Measures
- Encryption: All data encrypted at rest (AES-256) and in transit (TLS 1.3).
- Access Controls: Multi-factor authentication (MFA) and least-privilege access policies.
- Audit Logging: Comprehensive logs for all data access and modifications.
- Data Residency: Choose where your data is stored (US, EU, or other regions).
- Backups: Automated, encrypted backups with point-in-time recovery.
Compliance & Certifications
GDPR Compliant
Full compliance with EU data protection regulations, including right to access, erasure, and portability.
SOC 2 Type II
Annual audits verify our security, availability, and confidentiality controls.
ISO 27001
Information security management system certified to international standards.
CCPA Ready
California Consumer Privacy Act compliance for US-based customers.
Incident Response
We maintain a 24/7 security operations center (SOC) with automated threat detection and incident response protocols. In the unlikely event of a security incident:
- Immediate containment and investigation
- Notification within 72 hours (GDPR requirement)
- Root cause analysis and remediation
- Transparent communication with affected parties
Responsible Disclosure
Found a security vulnerability? We appreciate responsible disclosure. Report issues to:
We'll acknowledge within 24 hours and work with you to resolve it.
Questions about our security practices?
Contact Security Team