Security

Assessment data deserves enterprise-grade safeguards.

From SOC 2 controls to proactive monitoring, we treat candidate responses and hiring signals like the crown jewels.

Trust & compliance

Audited controls

SOC 2 Type II controls
GDPR-ready data processing agreements
Social sign-in via Google and LinkedIn

Data protection

Encryption + retention

Encryption in transit (TLS 1.3) and at rest (AES-256)
Hourly backups with 35-day retention
Role-based permissions with audit trails

Product security

Testing + disclosure

Feature flags + staged rollouts to reduce risk
Independent penetration testing twice per year
Responsible disclosure program for researchers

Need to report something?

security@evalon.app

Visit https://status.evalon.app for live uptime. Email us for questionnaires or penetration test reports.