Compliance & Trust

Designed for the EU AI Act.Compliance isn't a feature — it's the architecture.

Zero personality profiling. Reproducible AI output. Full audit trails. Granular consent management. Automated data retention. Every requirement is addressed at the architecture level — not bolted on.

GDPR CompliantEU AI Act ReadyAES-256 EncryptedEU Data ResidencyZero AI Training
0
Personality profiling — blocked by design
100%
AI output is reproducible
9
Pre-built compliance & hiring reports
0
Data shared with AI providers
100Score
Compliance Health
Across all active regulations
EU AI Act100%
GDPR100%
Bias Detection100%
Data Residency100%
Protected Categories
9 / 9
All Monitored
Audit Events (30d)
12,847
Logging Active
Data Retention
36 mo
Auto Enforced
Bias Incidents (90d)
0
Clean
EU AI ActHigh-Risk Ready
GDPRCompliant
Article 5No Violations
AES-256All Layers
Zero AI TrainingGuaranteed
EU AI Act · High-Risk AI

Recruitment AI is high-risk. We built for that.

The EU AI Act classifies employment AI under Annex III, Section 4. Omniteam addresses every core technical requirement — transparency, oversight, bias mitigation, and audit — by design.

Reproducible Evaluations

Same input, same output — every time. AI evaluations are fully deterministic and auditable. Re-run any assessment and get the identical result.

Zero Personality Profiling

Personality trait inference, emotion detection, and psychological profiling are blocked at the architecture level. Behavioral analysis only detects task-relevant signals — in full Article 5 compliance.

Bias Detection Engine

Real-time scanning for biased language across 8 protected characteristics — age, gender, ethnicity, disability, religion, sexual orientation, pregnancy, and marital status. Flagged patterns require human review.

Human-in-the-Loop

AI scores are always shown alongside human ratings — never as a replacement. Confidence indicators and consistency checks flag questionable outputs for manual review.

Explainable Scores

Click any score to see the full breakdown: calculation method, input data, AI model version, and the exact transcript quote that supports it. Nothing is a black box.

Complete Audit Trail

Every AI operation is logged — model version, parameters, inputs, outputs, and timestamps. Exportable and ready for any regulatory audit.

What makes Omniteam different

Capability
Omniteam
Typical AI tools
Personality profiling
Blocked at architecture level
Often used for "culture fit"
AI reproducibility
Same input = same output, always
Non-deterministic / opaque
Score explainability
Click any score → transcript quote
Aggregate score, no evidence
Data residency
100% EU (Azure West & North Europe)
US-hosted or unclear
AI training on your data
Contractually guaranteed: never
Often used to improve models
Consent management
6-category granular dashboard
Basic checkbox or none
GDPR · Privacy by Design

Privacy controls your team actually uses.

Granular Consent Dashboard

Six consent categories with per-purpose controls. Every change is logged with timestamp, IP, and user agent. Visual consent status per candidate — see exactly who consented to what.

Data Subject Access Requests

Built-in DSAR workflow: candidates request data export or erasure from the privacy dashboard. Email verification, status tracking, and deletion proof — covering interviews, recordings, transcripts, and evaluations.

PII Minimization

AI inputs are automatically sanitized. Candidate names, contact details, and protected attributes are stripped before any AI processing. Only data strictly necessary for each purpose is used.

Automated Data Retention

Each organization sets their retention period (1–36 months). Expired data is deleted automatically across database, blob storage, and search index — no manual cleanup needed.

Cookie Consent Management

GDPR-compliant cookie banner with granular opt-in. Analytics (GA4, Clarity) and marketing (Google Ads) load only after explicit consent. Essential cookies work without consent.

Right to Withdraw

Candidates can revoke consent at any time through the platform. Withdrawal is logged, effective immediately, and triggers automatic downstream data handling per your retention policy.

Infrastructure

EU-hosted. Encrypted. Zero exposure.

Zero Training Guarantee

Your data is never used to train AI models — guaranteed by Microsoft's Azure OpenAI enterprise terms. Azure OpenAI runs entirely within Microsoft's infrastructure, isolated from consumer OpenAI services.

EU Data Residency

All services hosted in Azure EU regions — West Europe (Netherlands) and North Europe (Ireland). Data never leaves the EU. Even Azure abuse-monitoring reviewers are located within the European Economic Area.

Network Isolation

All production services run inside a dedicated virtual network. Database, storage, and AI endpoints use private connections only — zero public internet exposure.

Encryption at Every Layer

TLS 1.2+ on every endpoint. Database and storage encrypted at rest with AES-256. All inter-service traffic stays on Azure's private backbone — never routed over the public internet.

Secrets Management

All credentials and encryption keys stored in Azure Key Vault with managed-identity access. Secrets are rotated regularly and never committed to source code.

Real-Time Monitoring

Application Insights and Log Analytics provide full observability. Every API call, AI operation, and consent change is logged with timestamps — queryable and exportable for audits.

EU-Hosted Infrastructure

All data processed and stored within the European Union. Zero public internet exposure.

VNet IsolatedTLS 1.2+AES-256
AI Processing
Azure OpenAI
West Europe
TLS 1.2+ / AES-256
Database
Azure PostgreSQL
North Europe
At-rest + In-transit
Application
Azure Container Apps
West Europe
Managed TLS
Video
LiveKit Cloud
Frankfurt
DTLS-SRTP
Secrets
Azure Key Vault
West Europe
HSM-backed

Network Security

  • Private Endpoints only
  • Dedicated VNet isolation
  • Zero public internet exposure
  • Azure backbone traffic only

Data Guarantees

  • Your data never leaves the EU
  • Never used for AI model training
  • Encrypted at rest and in transit
  • Storage versioning enabled

Monitoring & Audit

  • Application Insights telemetry
  • Log Analytics workspace
  • Every AI call timestamped
  • Compliance-ready audit export
5
EU-hosted sub-processors
0
Non-EU data transfers
100%
End-to-end encryption
24/7
Real-time monitoring
The evidence layer for hiring.

Compliance that keeps pace with your hiring.

GDPR controls, full audit trails, and EU AI Act readiness — built into every feature, not bolted on after.

Start 14-Day Free Trial Book a 15-Min Demo