We prioritize the security of your sensitive information. Our systems employ industry-leading encryption protocols to safeguard your data at every stage:

• Our communications and collaboration platform utilizes robust encryption both in transit (using TLS 1.2+) and at rest (with 256-bit AES encryption keys). 
• Our business management software encrypts data during transmission (using HTTPS) and storage (with AES-256). 
• The BrightScreen App, our screening platform, is powered by the industry's top software engine. It adheres to stringent security standards and employs AES-256 encryption to protect the confidentiality of sensitive background check information.
  

Communications & collaboration platform:

• ISO/IEC 27001 (Information Security Management)
• ISO/IEC 27017 (Cloud Security)
• ISO/IEC 27018 (Cloud Privacy)
• ISO/IEC 27701 (Privacy)
• SOC 2
• SOC 3
• FedRAMP

Business management platform:

• ISO 27001 
• SOC 1 TYPE II 
• SOC 2 TYPE II 
• PCI-DSS
• CISPE
• SecNumCloud
• CSA STAR

Background screening platform:

• SOC 2
• PCI-DSS

We prioritize the protection of personally identifiable information (PII). To minimize the risk of unauthorized access, we isolate PII within our secure background screening platform to the greatest extent possible, adhering to the principle of least privilege. This significantly reduces the potential attack surface for malicious actors.

We prioritize the security of data and our operations by exclusively using ChromeOS devices. ChromeOS is designed with multiple layers of built-in security, providing robust protection against threats like malware and phishing attacks. Its automatic updates ensure our systems are always running the latest security patches, minimizing vulnerabilities. Additionally, ChromeOS's sandboxing feature isolates each tab and app, preventing the spread of infections and protecting your data.

Verified boot, data encryption, and recovery mode further enhance the security of your sensitive information. With ChromeOS, we can focus on our core business, confident that our systems and data are protected by a secure and reliable infrastructure.

We rigorously control access to your data through a combination of advanced security measures. 

• The principle of least privilege (PoLP) tailors access permissions based on individual roles and responsibilities
• File classification to ensure that sensitive information is accessible only to authorized personnel with the correct permissions
• Centralized password management to securely store and share credentials if necessary, eliminating the need for employees to remember multiple complex passwords, reducing the risk of password reuse and unauthorized access. 

By combining these strategies, we create a robust access control framework that safeguards your data while maintaining operational efficiency.

The BrightScreen App retains reports for three (3) years after the completion date.

Our team members complete regular, recurring training on current cybersecurity threats.

External parties, such as employees of our customer companies and applicants, are required to authenticate their identities prior to the release of PII by our teammembers.

BrightScreen is 100% paper-free since 2019. Teammembers are blocked from printing company data.

We do not allow visitors to our physical facilities by our customers, applicants, vendors, or other parties unless required for continuity of our operations. Visitors are logged in and out to maintain records of access.

Teammembers authorized for remote work adhere to a strict remote work policy that protects sensitive data, company assets, and the safety of our staff.