We live in a world where cyber incidents happen every day. In 2021, cybercrime rose 600%, violating the privacy of millions of individuals. We acknowledge this threat and understand that information security is of the utmost importance.
We’ve partnered with AWS, taking full advantage of their Cloud services. These services enable us to capture, process and store data securely while respecting data sovereignty. AWS data centres employ world class security practices to protect from threat actors and geographical disaster.
AWS provides us with:
We engage in secure coding practices and utilise SAST tooling. We consistently engage in penetration testing on our application, to catch and remediate bugs that do make it through. This ensures that we’re building the most secure product we can.
For added assurance, our live product environment is protected with web application firewalls, denial of service protection and intrusion detection systems.
These practices proactive put security at the forefront of our product, ensuring it’s built and operated securely, rather than retrospectively added in.
Our candidates trust us with their data, and it’s our duty to protect them. That’s why we go beyond GDPR compliance – we’ve built a culture where all PII, regardless of its origin, should be treated to the same high standard at every stage of its life cycle. The following describes our standards:
With data practices such as these, you and your candidates can trust Sapia to handle data with the care and respect they deserve.
Security doesn’t stop with our product. At Sapia, we have teams dedicated to security and risk. They are responsible for:
We maintain ISO 27001:2013 certification, and we’re actively working towards SOC 2 accreditation.
You can be confident we have a team working to actively maintain security and business contingency risk, proactively preventing incidents before they can happen.