Security Policy

HireOnboard utilizes some of the most advanced technology for Internet security available today. When you access our site using Microsoft Internet Explorer version 11.0 or higher, Secure Socket Layer (SSL) technology protects your information using both server authentication and data encryption, ensuring that your data is safe, secure, and available only to registered Users in your organization.

 

Your company data will be firewalled from other companies and is inaccessible to others.

 

HireOnboard provides each User in your organization with a unique user name and password that must be entered each time a User logs on. HireOnboard issues a session “cookie” only to record encrypted authentication information for the duration of a specific session. The session “cookie” does not include either the username or password of the user. HireOnboard does not use “cookies” to store other confidential user and session information, but instead implements more advanced security methods based on dynamic data and encoded session IDs.



In addition, HireOnboard web sites is hosted in a secure server environment that uses a firewall and other advanced technology to prevent interference or access from outside intruders.

 

Security researchers seeking information on how to report security issues to HireOnboard should review our responsible disclosure policy.

HireOnboard Vulnerability reporting policy

Keeping our customers’ data secure is our number-one priority, and we encourage responsible reporting of any vulnerabilities that may be found in our site or application.

 

HireOnboard is committed to working with the security community to verify and respond to any potential vulnerabilities that are reported to us. The HireOnboard security team acknowledges the valuable role that independent security researchers play in Internet security.

 

Additionally, HireOnboard pledges not to initiate legal action against security researchers for penetrating or attempting to penetrate our systems as long as they adhere to the conditions below.

Testing for security Vulnerabilities

Conduct all vulnerability testing against Trial or Developer Edition organizations (instances) of our online services to minimize the risk to our customers’ data.

Reporting a potential security vulnerability

HireOnboard does not permit the following types of security research

The HireOnboard security team commitment

To all security researchers who follow this EMPTrust Vulnerability Reporting Policy, the HireOnboard security team commits to the following:

No compensation

HireOnboard does not compensate people for reporting a security vulnerability, and any requests for such compensation will be considered a violation of the conditions above. In such an event, Hireonboard reserves all of its legal rights