Security Policy

Introduction

At HR Streamline AI, we take the security of your data seriously. This Security Policy outlines the measures we take to protect your information and ensure the integrity and availability of our services.

Data Encryption

Encryption in Transit: All data transmitted between your device and our servers is encrypted using industry-standard Transport Layer Security (TLS) 1.2 or higher.

Encryption at Rest: All of your data, including database files and backups, is encrypted at rest using AES-256 encryption. Sensitive information, such as API keys, undergoes an additional layer of application-level encryption before being stored.

Access Control

Access to our production environment is strictly limited to authorized personnel and is controlled through multi-factor authentication (MFA) and the principle of least privilege. We maintain detailed audit logs of all access to our systems.

Your user data is logically separated within our multi-tenant architecture. Your organization's data is only accessible to authenticated users from your organization.

Compliance

Our infrastructure is hosted on leading cloud providers that are compliant with a wide range of international standards, including SOC 2, ISO 27001, and GDPR. We are actively working towards our own SOC 2 Type I compliance certification.

Vulnerability Management

We regularly scan our applications and infrastructure for vulnerabilities. Critical patches are applied as soon as they become available. We also engage with independent third-party security experts to perform penetration tests on our systems.

Contact Us

If you have any questions about our security practices or believe you have found a security vulnerability, please contact us immediately at security@agentic-hr.in.