Back to Trust Center

Access Control Policy

Last Updated: January 9, 2026

Principle of Least Privilege

Access to CandidateSeekers systems and data is granted only to the extent necessary for individuals to perform their job functions. Access is denied by default.

User Access

  • Candidates: Can only access their own profile data and public job listings. Enforced via Database Row Level Security (RLS).
  • Seekers: Can access their own company data and candidate profiles that have matched with their roles. Access to specific candidate contact info is gated by the "Match" system.

Administrative Access

Internal access to production systems is strictly controlled:

  • MFA Requirement: Multi-Factor Authentication (MFA) is required for all administrative accounts (GitHub, Vercel, Supabase, Stripe).
  • Unique Credentials: Shared accounts are prohibited. Every administrator has a unique ID.
  • Offboarding: Access is immediately revoked upon termination of employment.

Database Access

Direct access to the production database is limited to the CTO and Lead DevOps personnel. All application access uses service accounts with scoped permissions.

Access Reviews

We conduct quarterly reviews of all user accounts with administrative access to ensure privileges remain appropriate.