SOC 2 Type II certified. Full audit trail. Candidate consent on every assessment.
An independent auditor has verified that Beaverhand's security controls operate effectively over time. The audit covers data handling, access controls, encryption, incident response, and availability.
For agencies placing at enterprise clients, SOC 2 Type II is often a procurement requirement. Beaverhand passes it. Request the full audit report at security@beaverhand.com.
| Law | Jurisdiction | Requirement | Beaverhand |
|---|---|---|---|
| Illinois AI Video Interview Act | Illinois | Disclosure + consent + audit | ✓ Compliant |
| NYC Local Law 144 | New York City | Bias audit + notice | ✓ Compliant |
| EEOC AI Hiring Guidance | Federal | No disparate impact | ✓ Compliant |
| Maryland AEIA | Maryland | Disclosure required | ✓ Compliant |
| Colorado SB 205 | Colorado | Algorithmic accountability | In review |
AES-256 at rest. TLS 1.3 in transit. No data used for model training.
Role-based access. SSO (SAML 2.0) for Enterprise. Shareable links are view-only.
12 months default. Custom policies for Enterprise. Early deletion on request.
Candidate or agency can request deletion at any time. Completed within 30 days.
Every assessment action logged. Full history available for compliance review.
Disclosure and explicit consent collected before every assessment begins.