Statement of Bullhorn's Compliance with Massachusetts Regulation on Personal Data Protection

To learn more about personal data security at Bullhorn, please visit our Privacy Policy page.

The state of Massachusetts has adopted a regulation that covers the management of personally identifiable information of state residents, entitled "201 CMR 17.00: Standards for The Protection of Personal Information of Residents of the Commonwealth". The regulation went into effect March 1st, 2010 and applies to businesses that hold defined items of personally identifiable information about Massachusetts residents.

Bullhorn will maintain security and data systems and practices that meet the standards of the regulation. We have adopted security and personal data policies; we have a dedicated Information Security and Compliance team that provides monitoring and guidance concerning data security and personal data matters; and we provide internal training in appropriate data handling techniques.

Bullhorn is also registered with the U.S. Department of Commerce Safe Harbor program, ensuring that Bullhorn protects personal data in compliance with European Union Directive 95/46/EC on the protection of personal data.

Bullhorn does not have an International Standards Organization (ISO) Certification.

In addition, our production technical operations are based at Savvis Intelligent Hosting, a SSAE16 Type II certified data center. Savvis provides:

Redundant Firewall Protection
Data Encryption
Unique User Authentication
Data Segregation
IP System Security
Operating System Security
Database Security
Data Management