| Law | Jurisdiction | Requirement | Beaverhand |
|---|---|---|---|
| Illinois AI Video Interview Act | Illinois | Disclosure + consent + audit | ✓ Compliant |
| NYC Local Law 144 | New York City | Bias audit + notice | ✓ Compliant |
| EEOC AI Hiring Guidance | Federal | No disparate impact | ✓ Compliant |
| Maryland AEIA | Maryland | Disclosure required | ✓ Compliant |
| Colorado SB 205 | Colorado | Algorithmic accountability | In review |
SOC 2 Type II certification means an independent auditor has verified that Beaverhand's security controls — including data handling, access controls, and encryption — operate effectively over time, not just at a single point.
The audit covers security, availability, and confidentiality. It evaluates how assessment data is stored, who can access it, how it's encrypted, and how incidents are handled. For agencies placing at enterprise clients, SOC 2 Type II is often a procurement requirement — Beaverhand passes it.
Request the full audit report: security@beaverhand.com
Candidate receives the assessment link with a clear description of what they're about to complete.
Before starting, they see a disclosure explaining: what data is collected, how AI is used, and how results are shared.
Candidate provides explicit consent via checkbox before the assessment begins.
Consent record is stored with a timestamp and linked to the assessment session for audit purposes.
Assessment data retained for 12 months by default. Custom retention policies available for Enterprise.
Candidates can request deletion of their data. Agencies can delete assessment records at any time.
Role-based access. Only authorized team members see assessment results. Shareable links are view-only.
Data encrypted at rest (AES-256) and in transit (TLS 1.3). No assessment data is used to train AI models.
Set up your agency account. Invite your team. Configure role templates.
Every candidate sees a clear disclosure and provides consent before starting.
Run assessments knowing your workflow is compliant and auditable.