Security

At RecruitBot, we take security seriously. That’s why we strive to exceed the industry standard when it comes to protecting your data. Here’s how we do it.

RecruitBot uses best practices to build secure APIs to protect your information as it is transmitted between systems.

Our software integrates seamlessly within your applicant tracking system (ATS) to make sure your information is never compromised.

All code (HTML, CSS, Javascript, etc) is transmitted securely using Django’s & Apache’s HTTPS module.

Similarly, all user-entered information is transferred to our servers, protected via SSL only. RecruitBot’s HTTPS protocol attempts to negotiate TLS 1.2 whenever possible (dependent on the client’s browser).

RecruitBot supports Security Assertion Markup Language (SAML)-based Single Sign-On (SSO) using secure tokens.

If for some reason you do not use SAML, RecruitBot has strong password requirements as an additional security measure.

RecruitBot does not store any data on premises.

Instead, we use AWS for all data storage and processing, which is compliant with the most exacting standards in the industry. For more, please refer to Amazon’s security documentation here.

RecruitBot partners with a globally recognized leader in corporate data security to provide objective, third-party security audits and penetration tests.

These tests are performed to ensure our compliance with all conceivable privacy and security regulations.

Our staff is rigorously trained to handle your data responsibly and securely.

In the unlikely event of a security incident, RecruitBot has established a clear, effective plan of action in order to respond quickly and efficiently to any adverse effect on our customers. You may read more by requesting our longer security document here.

RecruitBot is fully GDPR compliant.

The EU General Data Protection Regulation (GDPR) took effect in May 2018, and the RecruitBot team worked tirelessly to adapt our product, operations, and contracts to ensure that our clients would comply fully with the new regulation. For an in-depth understanding of the measures taken, please refer to our security document by requesting it here.

RecruitBot’s standard security practices are equally robust:

  • Full SSL
  • Private VPN access with strong firewalls
  • Application-level security measures
  • Code verification
  • All data is encrypted in transit and at rest.
  • And more.