Data security at DevSkiller

Devskiller’s RealLifeTestingTM methodology gives you the tools to hire developers with the exact skill you need. But our innovative methodology is only useful when coupled with our ironclad commitment to protecting our customers’ and candidates’ data.

Data privacy, security, access, and continuity are prerequisites for anyone interacting with Devskiller so we have built internal processes and policies, verified by independent auditors to make sure our data is safe and secure.

Compliance

ISO 27001

ISO 27001 certified

GDPR

GDPR compliant

Privacy shield

Privacy Shield Active Participant


Privacy and access

Devskiller takes the privacy of our customers and users very seriously. Strict internal guidelines, enforced by a designated data protection officer, ensure that your data is properly handled. This means that we have very few problems but if an unforeseen accident does take place, Devskiller also has procedures to promptly notify everyone affected.

Our existing procedures mean that we are in compliance with most major privacy regulations including the European GDPR and information and security management specification ISO 27001. DevSkiller is also a Privacy Shield Active Participant. You can read more about our procedures in our privacy policy.

If a party wants access to their data held by Devskiller at any point, they can make a Data Subject Access Request (DSAR) to our Data Protection Officer who will grat reasonable requests within 30 days. This way, you can be sure that your data is secure and that you can tell exactly what data we hold.

Privacy and access

Security

Security at Devskiller starts at the front door and extends to all of the data we hold. Physical procedures include secure access to our offices, screens, and devices. While our office is also secure from fires, we are also secure in the cloud where our system uses the procedures of Google Cloud Services to securely store our code. Access to all environments is protected by a cloud firewall is accessible only via VPN, using a valid certificate and a second factor provided by Cisco Duo Security. The system is monitored by Datadog.

Security

Continuity

Devskiller is an integral part of our customers’ strategic hiring plans and therefore must always be accessible. To ensure that Devskiller is always available, we guarantee an uptime of 99.95% for critical components and 99.5% for non-critical components. To do this, we have a plan for everything from natural disasters to blackouts and terrorist attacks.

Our whole infrastructure is automated and together with application source code stored in the Git repository. Data is backed up and stored off-site and can be restored with automated scripts. We are backed up by Google cloud service’s infrastructure. In the event of a failure on the level of the cloud, it will only take 4 hours to move to a new region or if Google’s entire infrastructure breaks, it will only take 24 hours to be up and running on a new provider.

All this means that Devskiller can be counted on to be available to our users.

Continuity

Infrastructure and security providers

Google Cloud Services

Google Cloud Services

Cisco Duo Security

Cisco Duo Security

Datadog

Datadog