International privacy first: Greenhouse is one of the first ATS companies to be ISO 27701:2019 certified

Happy woman on conference call

2 mins, 11 secs read time

We’re excited to announce that Greenhouse has been certified to an international privacy standard for protecting and managing the processing of personal data – ISO 27701:2019.

In today’s hybrid working world, people are more connected than ever. As companies grow and expand into new markets, access to great global talent becomes more available. And to set themselves up for business success, they grow their tech stacks and open the floodgates to infinite new possibilities.

But all the new opportunities come with new risks concerning international privacy and organizations can leave themselves vulnerable to critical data breaches – and all the issues that come with them.


We’re setting a new standard

To protect people’s data, the International Organization for Standardization (ISO) – an international, nongovernmental organization that develops commercial standards – recently published the ISO/IEC 27701:2019 international privacy compliance standard for protecting and managing the processing of personal data.

Greenhouse always puts customers first, so we strive to be security and privacy compliant, from GDPR to previous ISO certifications. Since we continue to grow and expand our scope, this year’s audit was much more robust than past years – so we’re thrilled to announce that Greenhouse has achieved ISO 27701:2019 certification. And we’re one of the first companies in our industry to do so.


Why does ISO 27701:2019 certification matter?

ISO 27701:2019 is a privacy extension of ISO 27001:2013, the international information security standard for ensuring data is appropriately secured. The ISO 27701:2019 framework is an additional set of privacy-specific controls and control objectives for personally identifiable information (PII) and privacy information management systems (PIMS).

As one of the very first companies in our industry to achieve this certification, we are providing additional assurance that we take protecting our customers’ data seriously. It’s one thing to say we do, but it’s even better to have a third-party audit report and certificate that says we are doing everything we can with respect to information security and international privacy. Our customers – no matter what size their organizations are – can be assured that they’re in good hands.


In addition to ISO 27001:2013 and ISO 27701:2019, Greenhouse also undergoes SOC 1 and SOC 2 Type II audits every year. If you are an existing Greenhouse customer and would like a copy of our current SOC 1 or SOC 2 reports, please reach out to your Account Executive.


If you'd like view Greenhouse’s ISO 27001:2013 and 27701:2019 certificates, you can find them here. Want to learn more about Greenhouse’s security program and how we keep your data private? Get an overview here.

Learn about our security program
Jessica Freda

Jessica Freda

is the Information Security Manager at Greenhouse, specializing in governance, risk and compliance. When Jessica isn’t busy working to protect your data, she can be found at her bakery, Zucchini Kill, located in Austin, TX.

Ready to become great at hiring?

Request a demo today