Skip to main content
Trust Center

We Show Our Work.

No black boxes. No mystery algorithms. Every AI decision has a receipt. Every email has a log. Every candidate action is tracked and auditable.

Tenant Isolation

Your data is yours alone. Every database query is scoped by companyId with application-layer guardrails that prevent cross-tenant data access.

CompanyId Scoping

All queries include mandatory company context

Application-Layer Guards

Middleware validates tenant context on every request

Row-Level Security

RLS policies on roadmap for additional database-level protection

// Every query is scoped
const candidates = await prisma.candidate.findMany({
  where: {
    companyId: session.companyId, // Required
    // ... other filters
  }
});

// Middleware validates context
export async function withCompanyContext(req) {
  const session = await getServerSession();
  if (!session?.companyId) {
    throw new UnauthorizedError();
  }
  return session;
}
Candidate Timeline - Audit Trail
RecruitHorizon audit trail showing AI decisions, email logs, and stage history

Immutable audit logs for every AI decision

Glass Box Receipts

Every AI decision creates an immutable receipt. When our AI scores a candidate or sends an email, you get a permanent record of what happened and why.

AIDecision Table
Every AI score, recommendation, and classification is logged with the input data, model version, and confidence level.
EmailLog Table
Every outbound email is logged with recipient, subject, template used, and delivery status. Full audit trail for compliance.
StageHistory Table
Every candidate stage change is timestamped with the user or automation that triggered it. Complete hiring process history.

Compliance Posture

We only claim what we can prove. No buzzword bingo.

GDPR/CCPA-aware workflows

Implemented

Audit logs and data scoping support compliance workflows

SOC 2 Type II

Roadmap

In Roadmap - targeting Q3 2026

Encryption at rest and in transit

Implemented

Encryption in transit and at rest (provider-managed)

Automated security patching

Implemented

Render handles OS and runtime updates

Infrastructure Stack

Built on battle-tested infrastructure. No homegrown security experiments.

Hosting

Render

Application hosting with auto-scaling and zero-downtime deploys

Database

Supabase

PostgreSQL database with automatic backups and encryption at rest

Billing

Stripe

Payments processed by Stripe (PCI-DSS Level 1 certified)

Email

SendGrid

Enterprise email delivery with DKIM/SPF authentication

Savings Methodology

Time-saved estimates on this site are calculated using the following constants:

  • Resume screening: 6 minutes per resume (manual review baseline)
  • Outreach email: 5 minutes per personalized email (draft + send)
  • Interview scheduling: 15 minutes per candidate (email coordination)
  • Assessment grading: 10 minutes per submission (manual review)

These are approximations based on industry surveys and internal observations. Actual savings vary by workflow complexity and team size.

Trust Questions?

We believe radical transparency is a competitive advantage. If you have questions about our security or compliance posture, we want to hear from you.

Start Free Trial — See Receipts LiveContact Security Team