Skip to content
Login
Security

Practical security for sensitive hiring data.

OpenSeat is built around server-side sessions, read-only ATS sync, controlled access, and clear data handling for recruiting teams.

Request a security reviewPrivacy policy
Server-side sessions

HttpOnly cookies backed by Redis; no browser-stored API tokens.

Read-only Lever sync

OpenSeat mirrors Lever data for review without writing stages or tags back.

Retention controls

Deletion and retention requests are handled through customer workflows and policy review.

Compliance path

Controls are designed to support formal compliance work as the product matures.

Authentication

No passwords stored by OpenSeat.

  • Authentication delegated to Auth0 (OIDC/OAuth).
  • Sessions stored server-side and set as HttpOnly cookies.
  • Role-based access enforced server-side with organization scoping.

Browser protections

Reduce common web risk by default.

  • Content Security Policy (CSP) with per-request nonces.
  • CSRF protection on write operations.
  • Strict security headers served through the edge proxy.

Architecture

Sensitive work stays behind the BFF.

  • Next.js UI is served behind Caddy.
  • FastAPI handles auth, data access, sync, and AI calls.
  • Background workers process sync, parsing, scoring, and analysis jobs.

Data handling

Candidate data is treated as sensitive by default.

  • Lever data is mirrored into Postgres for fast review workflows.
  • Job-relevant text is sent to AI providers only when a workflow requires it.
  • OpenAI API usage is configured so submitted data is not used to train shared models.

A clear record of every decision

Review records are designed to be clear, categorical, and easy to trace back.

OpenSeat keeps ATS stage context, scorecard requests and submissions, AI rationale, reviewer notes, workflow states, and candidate activity in one candidate timeline.

This is a recruiter-facing decision history today. Formal compliance-grade audit exports and immutable event guarantees are future hardening work.

Subprocessors

Vendors used to deliver the service.

  • Auth0 - authentication and identity services.
  • Cloudflare - CDN, DNS, and security services.
  • Hostinger - infrastructure hosting for the core application.
  • OpenAI - AI services for candidate analysis features.
  • GitHub / GHCR - CI/CD and container image hosting.
  • Lever - ATS integration when enabled.

The authoritative list and details live in Privacy Policy.

Questions about security or data handling?

We can walk through architecture, subprocessors, retention expectations, and the rollout plan for your team.

Request a security reviewPrivacy policy