iMocha Security Guidelines

Data Security

iMocha is a Cloud-based SaaS application hosted on Microsoft Azure that adheres to some of the world’s strictest privacy standards. We are protected with Cloudflare security services against DDoS (denial-of-service attacks), customer data compromise, and abusive bots.

All data that is collected is protected from unauthorized access and data corruption throughout its lifecycle, additionally, data transmissions are protected by HTTPS with TLS 1.2. All data at rest (including backup data) is encrypted through 256-bit AES encryption, one of the strongest block ciphers available.

Reliability

Microsoft Azure guarantees a 99.9% delivery rate which enables iMocha to provide uninterrupted services to our customers. In addition, we are deeply focused on creating better ways to mitigate incidents through steps like quality assurance throughout our release pipeline, and automation in our processes.

Role-based Access Control

Role-based Access Control is essential to maintain security and limit unnecessary access to sensitive information. iMocha enables companies to decide the level of access their users should have, based on their roles in the organization.

GDPR

The General Data Protection Regulation 2016/679 is a regulation in EU law on data protection and privacy for all individual citizens of the European Union and the European Economic Area. It also addresses the transfer of personal data outside the EU and EEA areas. (Source)

Given space we are in, it is necessary for companies leveraging our assessments to collect, store and share the personal data of their candidates. iMocha gathers candidate information only after taking their consent and is secured with industry-standard encryption, security infrastructure, and practices. We aim to ensure that private individuals’ data is processed transparently and only for the specific purposes for which data is collected.

EEOC

iMocha believes in creating a workplace that is free of all biases. Our clients can be rest assured that none of the assessments are discriminatory or racist in nature. We make sure they are able to objectively assess skills and ease the candidate selection process, based on an unbiased evaluation of the applicant’s concise knowledge level and performance potential for a job function. All questions go through a robust validation process (link to pdf) and tested thoroughly before going live.