RecruitBot uses best practices to build secure APIs to protect your information as it is transmitted between systems.

Our software integrates seamlessly within your applicant tracking system (ATS) to make sure your information is never compromised.

All code (HTML, CSS, Javascript, etc) is transmitted securely using Django’s & Apache’s HTTPS module.

Similarly, all user-entered information is transferred to our servers, protected via SSL only. RecruitBot’s HTTPS protocol attempts to negotiate TLS 1.2 whenever possible (dependent on the client’s browser).

RecruitBot supports Security Assertion Markup Language (SAML)-based Single Sign-On (SSO) using secure tokens.

If for some reason you do not use SAML, RecruitBot has strong password requirements as an additional security measure.

RecruitBot does not store any data on premises.

Instead, we use AWS for all data storage and processing, which is compliant with the most exacting standards in the industry. For more, please refer to Amazon’s security documentation here.

RecruitBot is fully GDPR compliant.

The EU General Data Protection Regulation (GDPR) took effect in May 2018, and the RecruitBot team worked tirelessly to adapt our product, operations, and contracts to ensure that our clients would comply fully with the new regulation. For an in-depth understanding of the measures taken, please refer to our security document by requesting it here.

RecruitBot’s standard security practices are equally robust:

• Full SSL
• Private VPN access with strong firewalls
• Application-level security measures
• Code verification
• All data is encrypted in transit and at rest.
• And more.

RecruitBot takes potential security vulnerabilities seriously.

Please report any security vulnerabilities you find to security@recruitbot.com.