Security for RefAssured

Enterprise Security

Your data is protected by enterprise-grade security

RefAssured is built on AWS infrastructure with layered controls for confidentiality, availability, and access. Your candidate and customer data stays private and available only to authorized users.

SOC 2 Type II

Encryption in transit and at rest

Continuous monitoring

MFA available

Security Architecture

Security architecture built for enterprise review

Security is embedded across infrastructure, application controls, encryption, monitoring, and auditability.

Secure infrastructure

RefAssured runs on AWS with network segmentation, hardened configurations, and routine vulnerability management. External testing and continuous controls help validate our security.

Authentication

Role-based access controls help ensure users can only access what they are authorized to see. MFA is available to add an additional layer of account protection.

Monitoring and alerting

We monitor platform health and security signals across infrastructure and application layers. Alerts are triaged quickly to reduce risk and minimize disruption.

Encryption in transit

Transport Layer Security (TLS) protects data moving between users, integrations, and RefAssured services, helping prevent interception or tampering.

Encryption at rest

Data is encrypted at rest using strong cryptographic standards, with key management controls designed to protect confidentiality even in the event of unauthorized access.

Auditability

Audit logs help provide traceability for key actions in the platform. This supports investigations, compliance reporting, and internal governance.

Data Protection

Protecting data at every touchpoint

Security controls protect data across every touchpoint, from submission workflows and integrations to reference and performance reporting.

Encrypted at rest

Stored data is encrypted using strong encryption standards designed to protect confidentiality.

Encrypted in transit

TLS helps protect information as it moves between users, integrations, and RefAssured services.

Role-based access

Granular permissions help ensure users only see what they are authorized to access in your account.

Audit logs

Key platform actions are logged to support investigations, compliance needs, and security reviews.

Verified Identity

Identity verification is built-in to your security protocol

Through our partnership with ID.me, candidate identity can be verified using government-issued ID and liveness detection. This reduces impersonation risk and strengthens the integrity of your workflow before submission.

ID verification via ID.me

Confirm identity with government-issued ID and liveness detection. Reduce fraud risk at the source, before issues become client incidents.

Protecting performance data

Reference feedback and post-hire evaluations are encrypted and access controlled. Performance intelligence stays within authorized workflows.

Platform Status

Always on and always monitored.

We monitor platform health and security signals around the clock, including integrations, surveys, and APIs. If an issue occurs, we publish updates and resolution progress.

View live status

Continuous monitoring across core services and integrations

Threat detection signals and alerting across the AWS environment

Incident updates published to the status page for transparency

Security questions or disclosures

For security questions, vulnerability reports, or responsible disclosure, speak with your RefAssured account representitive. We review every report and respond promptly.

Always on and always monitored.

Multi-Factor Authentication (MFA)

Security questions or disclosures

Ready to get started with confidence?

Reach us

Platform

About

Resources