Trust & Security

Security You Can Count On.

Offerday is committed to the highest standards of data security, privacy, and responsible AI. Backed by SOC 2 Type II certification and a US patent.

Request Audit Report →
SOC 2 Type II Certified
US Patented Technology

Our Commitment

Built on a foundation of trust.

From security certifications to responsible AI practices, here is what Offerday does to protect you and your data.

SOC 2 Type II Certified

Offerday's last SOC 2 Type II audit was conducted from August to October 2025, which included a Penetration Test. You can request a copy of our Audit Report by contacting [email protected].

US Patent No. 12,591,855-B1

Offerday currently holds US Patent No. 12,591,855-B1: System for facilitating hiring decision making. Our patented ApplicantIQ™ technology powers our AI screening platform.

Responsible AI Use

Offerday is committed to the fair use of AI. We routinely monitor and test our systems for accuracy. Our software assists hiring decisions but does not make any affirmative decisions. All scoring tools are defaulted off with a disclaimer.

SOC 2 Type II

Request a copy of our Audit Report

Contact our security team at [email protected]

Request Report →

Controls in Place

How we protect your data.

Six categories of security controls in place at Offerday to protect your data and ensure business continuity.

Product Security

  • Secure Software Development Lifecycle
  • Change Management Procedures
  • Vulnerability Scanning Procedures
  • Secure Product Architecture Defined
  • Production Environment Segregation
  • Intrusion Detection Systems Utilized

Access Management

  • Role Based Access Control & MFA
  • User Access Reviews
  • Password Policy Enforced
  • Restricted Production Access
  • Database Access Restriction
  • Access Request & Approval Process
  • Access Control Policies & Procedures

Security and Continuity

  • Disaster Recovery Plan & Procedure
  • Incident Response Plan
  • Data Backups & Restoration Procedure
  • Multi-Availability Production Zones
  • Production Monitoring Implemented
  • Audit Logging Established

Data Security

  • Encryption at Rest Implemented
  • Encryption in Transit Implemented
  • Encryption Key Management Process
  • Network & Firewall Access Restricted

Organization Security

  • Risk Assessment & Treatment
  • Vendor Risk Management
  • Asset Management
  • Security Awareness & SDLC Training
  • Defined Roles & Responsibilities
  • Service Level Agreements Established

Endpoint Security

  • Endpoint Detection & Response
  • Disk Encryption Enforced
  • Threat & Malware Protection Enforced
  • Endpoint Management Policies

Questions about our security?

Our security team is happy to answer any questions about our controls, certifications, or data practices.