Security
Security and data handling are part of the pilot conversation.
Jobsupa is built on the ScaleMule platform and keeps sensitive keys and deployment credentials server-side. Enterprise pilots include a review of the data and access model before rollout.
Scoped production access
Production changes move through the Jobsupa release workflow, with deployment credentials kept out of the browser bundle.
Server-side API keys
ScaleMule API keys are read only on the server. Browser code receives public configuration only.
TLS and hardened headers
The public app serves over HTTPS with strict transport security, frame protection, content-type protection, and a restrictive permissions policy.
Pilot data review
Enterprise pilots start with a review of role data, candidate flow, retention expectations, and integration requirements.
Reviewed before launch
- - Data categories used during the pilot
- - Recruiter and hiring-manager access needs
- - Candidate communication and retention expectations
- - ATS, reporting, or export requirements