Security, compliance & equity you can trust at scale
Your talent data deserves enterprise-grade security.
Your candidates deserve fair, compliant screening processes.
Get both without compromise.
Cangrade is SOC 2 Type 2 and GDPR compliant, and built to exceed EEOC and ADA requirements, so you hire with confidence, knowing your data is protected and your processes promote equity at every step.
Granular user access controls
Your hiring process involves multiple stakeholders with different needs. Our detailed user permission system ensures each team member accesses only the talent data they require—nothing more, nothing less.
Comprehensive data security
Talent intelligence deserves the highest security standards. We deploy comprehensive protection, including end-to-end encryption, two-factor authentication, SAML-based SSO, comprehensive activity logging, and real-time cyber threat monitoring. Your secure data stays secure, period.
Privacy by design
Privacy isn’t negotiable. Cangrade never shares user data with third parties, and individuals can request full disclosure or deletion of their information at any time. Our AI Copilot, Jules, operates without identifying information, ensuring no personal inferences can be made while maintaining complete record erasure capabilities.
Compliance that evolves
We don’t just meet standards—we set them. Cangrade goes beyond EEOC compliance and also maintains GDPR and SOC Type 2 certifications. As AI and hiring regulations advance, our compliance framework evolves alongside them, keeping you ahead of the curve.
Engineered for equity
Our commitment to diversity, equity, and inclusion isn’t just policy—it’s embedded in our technology. Every assessment question and algorithmic model undergoes rigorous testing using our patented bias removal process. Any element showing adverse impact is eliminated, keeping Cangrade’s assessments EEOC compliant and ensuring no demographic group gains an unfair advantage or faces discrimination
Enterprise scale, startup agility
Whether you’re scaling rapidly or expanding globally, we’re built to grow with you. With 99.99% uptime SLA and platform availability in 12+ languages, we handle hiring surges and international expansion without missing a beat.
Frequently asked questions
What security certifications and standards does Cangrade comply with?
Cangrade maintains compliance with SOC 2 and GDPR, and our assessments are built to meet EEOC requirements. Our security is validated through covering access controls, data encryption, availability, and confidentiality. For customers conducting vendor security reviews, our compliance documentation is available on request through your Cangrade account team.
Is candidate data ever used to train Cangrade’s AI models?
No. Candidate data processed through Cangrade is never used to train AI models outside of those for your organization. Assessment results, candidate scores, and talent insights belong to your organization and are used solely to power your hiring workflows and models. Cangrade’s models are developed using historical assessment data and KPIs, your job description, or input from your hiring team. Your models and data stays yours.
Does Cangrade’s assessment comply with ADA requirements for candidates with disabilities?
If a security incident occurs, Cangrade moves quickly and keeps control firmly in the customer’s hands. Cangrade will notify the customer’s designated security contact in writing within 24 hours of confirming a breach, followed by a detailed written report within 2 business days covering all relevant circumstances. Cangrade will also conduct a full investigation and provide ongoing updates, with information requests fulfilled within 48 hours. Critically, Cangrade will not inform any third party about the breach without the customer’s prior written consent — the customer retains sole authority over whether and how affected individuals, regulators, or law enforcement are notified. For platform outages, a separate notification protocol is triggered immediately for critical disruptions.
Can Cangrade’s scoring decisions be explained and defended in an audit?
Cangrade supports SAML-based single sign-on (SSO), two-factor authentication (2FA), and granular role-based access controls (RBAC). Your IT team can configure permissions at the individual user level, ensuring each team member accesses only the talent data relevant to their role. All user activity is logged and available for audit review. For enterprise customers with specific identity provider requirements, speak with your Cangrade account team about supported SSO configurations.
Does Cangrade’s AI make hiring decisions, or do humans remain in control?
Cangrade’s infrastructure is hosted on AWS in US-East. Candidate data is stored and processed within US only. For organizations with specific data residency requirements — including EU-based candidates, regulated industries, or state-level privacy law obligations — speak with your Cangrade account team about available options for your deployment. Cangrade is GDPR compliant and maintains data handling practices consistent with CCPA requirements.