1. Introduction
At Algohire Technologies Private Limited (“Algohire,” “we,” “us,” or “our”), safeguarding user data is at the core of our mission. We are committed to implementing robust security measures across all levels—spanning infrastructure, application, and organizational practices—to ensure the protection, confidentiality, and integrity of the data entrusted to us.
Algohire is dedicated to complying with global data protection standards, including but not limited to the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and Digital Personal Data Protection Act (DPDPA). These standards guide our policies and practices to uphold the highest levels of data security and privacy.
This policy outlines our comprehensive approach to data security, reflecting our unwavering commitment to protecting user information and maintaining the trust of all our stakeholders.
2. Infrastructure Security
2.1 Data Transmission & Storage
Algohire ensures that all data transmitted to and from its platform is secured using HTTPS and Transport Layer Security (TLS) protocols, protecting it against unauthorized access or interception during transmission.
Data stored within our systems is encrypted at rest using advanced encryption standards such as AES-256, ensuring that sensitive information remains secure. To enhance reliability and resilience, we implement regular backups and maintain disaster recovery mechanisms, enabling quick data restoration in the event of a system failure.
2.2 Network Security
To safeguard our infrastructure, Algohire employs robust network security measures, including:
Firewall Protections: Preventing unauthorized access to systems by filtering and controlling traffic.
Intrusion Detection and Prevention Systems (IDS/IPS): Monitoring network activity in real time to identify and address potential threats.
Continuous Monitoring: Using advanced tools to detect and respond to suspicious activity promptly.
These measures ensure a secure environment for all users and protect the integrity of our platform.
3. Application-Level Security
Algohire enforces strict access controls to ensure that only authorized users can access data and platform features. This includes API security, role-based permissions tailored to user roles, and maintaining audit trails to log and monitor access attempts. Multi-Factor Authentication (MFA) is implemented for enhanced account security.
We follow secure development practices throughout the software lifecycle, including regular code reviews, vulnerability assessments, and testing processes to identify and mitigate security risks proactively. Additionally, our multi-tenancy architecture ensures complete data isolation between clients, with periodic testing to validate and maintain these safeguards, preventing unauthorized data access or leakage.
4. Organizational Security Measures
4.1 Staff Access
Algohire strictly adheres to the principle of least privilege, ensuring that staff members have access only to the data and systems necessary for their roles. Access permissions are reviewed on an annual or semi-annual basis to maintain alignment with organizational needs and security standards. All staff members undergo mandatory cybersecurity training programs to enhance awareness of data protection practices and mitigate risks of internal breaches. In the event of unauthorized access or an internal breach, Algohire follows a well-defined incident response procedure to contain, investigate, and resolve the issue promptly.
4.2 Vendor and Third-Party Security
Algohire employs rigorous policies for vetting third-party service providers to ensure they meet our stringent security and compliance standards. Contracts with vendors include obligations to adhere to global data protection regulations, such as GDPR, CCPA, and DPDPA. Regular assessments and reviews are conducted to confirm ongoing compliance and mitigate risks associated with third-party integrations. These measures ensure that all vendors align with Algohire’s commitment to safeguarding user data.
5. Integration Security
5.1 Google OAuth and Third-Party Tools
Algohire integrates Google OAuth to enhance user functionality, such as seamless scheduling and calendar management. Additionally, we utilize other third-party tools and services, including analytics platforms and email providers, to improve platform performance and user experience. All integrated services handle data in compliance with Algohire’s privacy and security policies, ensuring that user information is processed responsibly and securely.
Users maintain full control over their data, with explicit consent obtained before enabling integrations. Data access granted to third-party tools can be revoked at any time through account settings or by contacting support. Transparency regarding the purpose and scope of data sharing is prioritized to uphold user trust.
5.2 Data Handling
Data accessed via Google OAuth is handled according to our Privacy Policy, and is used solely to enhance user functionality and service efficiency.
6. Data Retention and Deletion
Algohire adheres to clearly defined data retention policies to ensure responsible handling of user data. Different data types, such as resumes, application logs, and account details, are retained only as long as necessary to fulfill their intended purposes or comply with legal and regulatory requirements.
Users have the right to request data deletion or erasure at any time, including account termination and removal of associated content. Secure deletion practices are employed to ensure that data is irreversibly removed from all systems, aligning with global regulations like GDPR, which mandate data portability and erasure rights. Algohire is committed to safeguarding user data throughout its lifecycle.
7. Compliance and Commitments
Algohire is dedicated to maintaining compliance with globally recognized data protection regulations, including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and Digital Personal Data Protection Act (DPDPA). These frameworks shape our data security and privacy practices, ensuring that user information is handled responsibly and in accordance with legal standards.
We continuously align our security measures with industry best practices to demonstrate our commitment to safeguarding user data. Algohire also evaluates opportunities to strengthen its compliance framework, reinforcing trust and reliability for all stakeholders.
8. Transparency and Trust
Algohire is committed to maintaining transparency in its data security and privacy practices. We believe that fostering trust with our users and stakeholders is essential. To uphold this commitment, we openly communicate how user data is collected, processed, and secured.
As part of our dedication to transparency, Algohire plans to introduce periodic security and privacy reports. These reports will provide stakeholders with insights into our ongoing efforts to enhance security, address potential vulnerabilities, and comply with data protection regulations. By sharing these updates, we aim to reinforce confidence in our platform and its safeguards.
9. Contact Information
If you have questions, concerns, or requests related to data security, privacy, or this policy, Algohire is here to assist. You can reach out to us through the following channels:
General Inquiries: For general questions or support, email us at [email protected].
Privacy and Security Concerns: For specific inquiries related to data protection, privacy rights, or security practices, contact our team at [email protected].
Our team is dedicated to addressing your concerns promptly and ensuring a secure and transparent experience on the platform.
