Security
Last updated: January 2026
Our Approach
RecruiteAI handles sensitive recruitment and candidate data. We implement technical and organizational measures to protect that data and to keep our platform available and reliable for screening and verification workflows.
Data in Transit and at Rest
Data sent between your device and our systems is encrypted using industry-standard protocols (TLS). Data we store, including account information and candidate data processed for screening and GitHub verification, is encrypted at rest using accepted encryption methods.
Access Control
Access to our production systems and to customer data is restricted to personnel who need it to operate and support the service. We use strong authentication, role-based access, and audit logging. Access is reviewed on a regular basis and revoked when no longer required.
Infrastructure and Operations
Our platform runs on infrastructure that is maintained with security updates and hardened configurations. We monitor our systems for suspicious activity and use practices such as secure development, testing, and deployment to reduce risk.
Incident Response
We have procedures to detect, contain, and respond to security incidents. If we determine that your data has been affected in a way that poses a risk to you, we will notify you and relevant authorities as required by applicable law.
Your Role
You can improve security by using strong passwords, keeping your account credentials confidential, and ensuring that only authorized users in your organization have access to your RecruiteAI account. If you notice anything unusual or believe your account may be compromised, contact us promptly.
Reporting Security Concerns
If you believe you have found a security vulnerability in our service, please report it to us via our contact page. We will respond and address valid reports in a timely manner.