How Voxxhire treats candidate data.

SOC 2

We're building toward enterprise-grade compliance — contact sales for current attestation status.

Data protection alignment

• • GDPR (EU) — aligned data handling.
• • UAE PDPL (Federal Decree-Law 45 of 2021) — aligned: explicit consent, retention, deletion.
• • KSA PDPL (Royal Decree M/19) — aligned.
• • India DPDP Act 2023 — aligned.

EEOC and NYC Local Law 144

Voxxhire is designed for EEOC-aware hiring: structured rubrics applied consistently across candidates, advisory scoring with mandatory human review, audit-ready transcripts and reviewer notes. We do not perform facial analysis, emotion detection, or personality prediction.

For employers using Voxxhire for candidates resident in New York City, the customer is responsible for the candidate notification and annual bias audit required by NYC Local Law 144. We support this by providing structured audit data and clear AI-disclosure copy candidates can be shown.

Data residency

Default storage is region-nearest to the contracting customer. GCC-region storage is available for GCC customers on Growth and Enterprise plans; India-region storage is available for India customers on Growth and Enterprise plans.

Candidate consent

Explicit consent is captured before any recording begins. The consent surface explains what AI is doing, what data is collected, how long it is retained, and how the candidate can request deletion. Candidates can request deletion at any time.

Bias-mitigation methodology

See our bias-audit approach for the methodology, how we test, and what we surface to customers running their own audits.

What we do not do

No facial analysis. No emotion detection. No personality prediction. No autonomous hiring decisions.