Question 1

Does MachineHiring ATS support ISO 27001 controls?

Accepted Answer

Clarification: We have not completed an ISO 27001 certification and we don’t claim certification today.
What we can do

Map to ISO 27001‑aligned practices as part of your security review (Configurable / On request).
Provide architecture and policy documentation under NDA.
Implement control‑adjacent features (RBAC, encryption in transit/at rest, logging, retention tooling).

If ISO 27001 alignment is a requirement, we’ll review your control set during procurement and plan the necessary work together.

Question 2

Is MachineHiring ATS SOC 2 Type II certified?

Accepted Answer

Clarification: We do not have a current SOC 2 Type II certification and we don't advertise one today.
What we can do

Map to SOC 2‑aligned practices as part of your security review (Configurable / On request).
Provide architecture and policy documentation under NDA.
Implement control‑adjacent features (RBAC, encryption in transit, logging, retention tooling).

We operate with strong security practices (encryption in transit, RBAC, secure datacenters), and audit logs can be implemented if required. If SOC 2 Type II alignment is a requirement, we'll review your control set during procurement and plan the necessary work together.

Question 3

Does MachineHiring ATS encrypt data in transit?

Accepted Answer

Data is encrypted in transit (TLS 1.2+). We enforce strong cipher suites and apply role‑based access so only authorized users can see sensitive fields. Hosting is in secure, top‑tier datacenters.
Additional security considerations can be implemented based on customer requirements during procurement and development phases.

Question 4

Does MachineHiring ATS store compliance documents securely?

Accepted Answer

Candidate files, consent proofs, and attachments are stored in secure cloud infrastructure with access‑controlled storage and configurable retention policies.
Security features

Encryption: Data encrypted in transit
Access controls: Role‑based restrictions (e.g., HR-only document access)
Consent tracking: Digital consent logs and proof of authorization
Audit trails: Complete activity logs for compliance reviews (Configurable / On request)
Retention policies: Automated document lifecycle management

Document handling capabilities

Multiple file format support: PDF, DOC, TXT, images, and other common document types
Bulk document processing: Handle large volumes of compliance documents efficiently
Version control: Track document updates and maintain historical versions
Metadata management: Organize documents with tags, categories, and custom fields

Configurable compliance features

Custom retention schedules: Set different retention periods for various document types
Automated compliance workflows: Configure approval processes for sensitive documents
Role-based document access: Granular permissions based on user roles and responsibilities
Compliance reporting: Generate audit reports and compliance summaries on demand

Data residency & integration

Jurisdiction-specific hosting: Data can be hosted in specific geographic regions as required
Compliance system integration: Connect with existing GRC (Governance, Risk, Compliance) platforms
API access: Programmatic document management for enterprise compliance workflows
Custom data residency patterns: Tailored hosting solutions for regulatory requirements

Integration capabilities

HRIS integration: Sync compliance documents with existing HR systems
Document management systems: Connect with enterprise content management platforms
Audit system connectivity: Direct integration with compliance monitoring tools
Automated compliance reporting: Schedule and deliver compliance reports to stakeholders

Infrastructure

Hosted in secure, certified cloud infrastructure
Regular security assessments and updates
Industry-standard compliance frameworks supported

Question 5

Where is MachineHiring hosted?

Accepted Answer

MachineHiring is hosted in enterprise-grade datacenters located across Europe and the United States, built for high availability and reliability. These facilities maintain redundant power, cooling, and connectivity, and they adhere to internationally recognized standards for data protection and operational security. All data is encrypted both in transit, with regular backups and disaster recovery mechanisms in place. Access to infrastructure is tightly controlled and monitored, and full audit trails can be enabled to meet governance or compliance requirements.

Question 6

Can MachineHiring ATS anonymize candidate details for fairness?

Accepted Answer

Yes. We can provide "blinded review" views that hide selected PII (name, school, photo, etc.) per role, stage, or requisition while keeping full data available to authorized users.

Question 7

Can MachineHiring ATS prevent cheating in online assessments?

Accepted Answer

Yes — MachineHiring ATS can be configured to include anti-cheating measures for online assessments. Because the system is customizable, we can integrate tools such as:

Timed assessments that automatically close after a set duration.
Randomized question banks so no two candidates receive the same sequence.
Single-attempt limits to prevent re-taking.
Proctoring integrations (e.g., webcam monitoring, screen activity checks) if your organization requires higher-stakes oversight.

Which measures are enabled depends on your company’s preferences and compliance environment. In short, MachineHiring ATS gives you the flexibility to enforce as much exam security as you need — from simple safeguards to enterprise-level proctoring setups.

Question 8

Does MachineHiring ATS support role-based access control?

Accepted Answer

Yes. We can define granular permissions:

Recruiters see candidate details.
Hiring managers see only their requisitions.
Execs see dashboards and reports.

Question 9

Can MachineHiring ATS restrict access to sensitive candidate data?

Accepted Answer

Yes. Sensitive data (e.g., health checks, salary) can be restricted.
Only authorized roles may view these fields.

Question 10

Where is MachineHiring ATS data stored and how is it protected?

Accepted Answer

Data is hosted in secure data centers. US/EU compliance practices are supported.

Security FAQ