Information security and privacy

Keeping Client Data Safe

Security is the foundation of our organization. Rival solutions have been built to keep your data safe. The Rival Executive Leadership Team and Board of Directors are committed to preserving the confidentiality, integrity and availability of client data.

Organizational Security

All Rival employees are required to complete security, privacy and compliance training during their onboarding experience and on an annual basis. We believe that information security is every employee’s responsibility in their day-to-day operations.

Infrastructure Security

Rival provides best-in-class protection through its hardware, software and operations management. The infrastructure layer is designed in a defense and depth approach to provide the highest levels of system confidentiality, integrity and availability.

Operational Security

Rival unites your ATS, HRIS, and key tools into a seamless orchestration layer—connecting data, teams, and workflows to maximize your existing investments and make every system work smarter together.

Trusted by the World’s Leading Brands

System Monitoring

Rival's IT infrastructure is subject to annual penetration testing and scanned monthly for vulnerabilities using industry-leading technology. A portfolio of tools is used to alert responsible groups of component failures and thresholds indicating problems.

System Redundancy

Rival strives to eliminate any single point of failure by maintaining a highly available, secure environment that is ready for immediate failover. This is done through process flow among multiple devices and multiple service providers. This function is tested annually through our SOC 2 audit.

Security Governance, Risk and Compliance

Rival uses CIS Top 20, NIST and the ISO 27000 family of information security standards as the framework of our security practice.

These policies and practices are evaluated semi-annually through internal review and annually by an independent SOC 2 audit.

General Data protection regulation

Rival is a processor of foreign data and maintains all GDPR related standards and requirements for its clients.

Rival also meets the requirements defined by the Swiss-U.S. Data Privacy Framework, the EU-U.S. Data Privacy Framework and the UK Extension to the EU-U.S. Data Privacy Framework. These requirements are examined yearly.

Personally Identifiable information

Personally identifiable information (PII) is encrypted throughout Rival’s applications and infrastructure.

Data commonly accepted as sensitive and needing encryption would be social security numbers, drivers license numbers and bank account numbers, as well as other fields determined by the client.

Underrepresented Groups

The American Institute of Certified Public Accountants has developed the SOC framework for safeguarding the confidentiality and privacy of information that is stored and processed in the cloud.

Data Privacy Framework

The EU-U.S DPF., the UK Extension to the EU-U.S DPF. and Swiss-U.S. DPF allows companies on both sides of the Atlantic to comply with data protection requirements when transferring personal data between the EU and the U.S.

Ready to rival the status quo?

Rival goes beyond traditional talent management to help our clients find, launch, and develop the best talent for their business.