Screeq
Compliance Readiness

Six frameworks,
one control plane.

Screeq is engineered to operate inside customer compliance programmes. Independent assessor reports are issued where stated; otherwise controls are aligned with the framework and evidence is available on request. Public pages describe Screeq as 'aligned with', 'designed to support', 'audit-ready for' or 'operating controls mapped to' the frameworks below.

Request the evidence pack Cross-framework control map

14-day free trial · No credit card · Cancel anytime

Framework readiness

Where we are, in plain English.

Privacy
GDPR
EU General Data Protection Regulation
Operational

Screeq is built to support customers' obligations under the EU GDPR. DSARs, Right to Erasure, consent capture and breach notification are first-class workflows.

Read the page
Privacy
UAE PDPL
UAE Personal Data Protection Law (Federal Decree-Law 45 of 2021)
Operational

Screeq is built to support customers' obligations under the UAE Personal Data Protection Law, with UAE data residency, Arabic-ready experience and WPS-ready payroll.

Read the page
Security
ISO 27001
ISO/IEC 27001 — Information Security Management System
In assessment

Screeq operates an ISO/IEC 27001-aligned ISMS with a documented scope, Statement of Applicability, internal audit programme and management reviews.

Read the page
Privacy
ISO 27701
ISO/IEC 27701 — Privacy Information Management System
Documented

Privacy controls extend Screeq's ISMS with RoPA, DPIA register, sub-processor registry and a privacy-by-design gate on every new feature.

Read the page
Security
SOC 2 Type II
AICPA SOC 2 Type II — Trust Services Criteria
In assessment

Screeq's control environment is mapped to the AICPA Trust Services Criteria with continuous evidence capture across change management, access reviews and backup verification.

Read the page
Quality
ISO 9001
ISO 9001 — Quality Management System
Documented

Engineering and customer delivery operate under a documented ISO 9001 Quality Management System covering change control, internal audits and management review.

Read the page
Continuous compliance

Auditors see live evidence, not screenshots.

Thirteen scheduled compliance cron jobs run audit, retention, breach, key-rotation, training, DR and backup checks every day or week. Every result is written to the hash-chained, tamper-evident audit log. That's the evidence we hand to assessors.

Cross-framework mapSub-processor registryRead the DPA
Available on request
  • • ISMS scope and Statement of Applicability
  • • SOC 2 readiness letter
  • • Penetration test executive summary
  • • SIG Lite / CAIQ questionnaire (pre-filled)
  • • Business continuity & DR plan summary
  • • Cyber-insurance certificate
  • • Sample RoPA / DPIA exports
Email coffee@screeq.com →
Questions

Readiness — common questions

Can't find what you're looking for? Email us at .

Readiness means the underlying controls — policies, registers, cron jobs, audit log entries — are operational in production and evidence is being captured continuously. We only use 'certified' when an accredited assessor has issued the corresponding report.

Yes. Request the evidence pack from coffee@screeq.com. Typical contents: ISMS scope, Statement of Applicability extract, sub-processor registry, pen-test executive summary, SBOM, and the relevant framework's control matrix.

Yes. Our standard DPA (with EU SCCs and UK IDTA) is pre-signed and available at /dpa. Custom DPAs are accepted for enterprise and regulated-industry customers.

Whenever a framework's status changes and at minimum on each quarterly management review. The cross-framework control map at /trust/control-map is generated from the same source of truth as the in-product compliance registers.

Screeq is built for startups, scale-ups, staffing teams, and growing companies that need modern recruiting, HR, and talent operations without legacy implementation cycles.

Yes. Screeq is designed for multi-team hiring and people operations, with tenant-scoped data, role-based access, and shared reporting across jobs, candidates, employees, and HR workflows.

Yes. Screeq uses AI for CV parsing, screening, interview transcription, scoring support, job-description drafting, and workflow assistance, while keeping final hiring decisions with humans.

Yes. Teams can begin with recruiting, ATS, and AI interviews, then add onboarding, performance, time off, compensation, documents, assets, org planning, and reports when they are ready.

Screeq replaces manual shortlisting, spreadsheet tracking, scheduling back-and-forth, fragmented notes, and disconnected handoffs with one workflow from application to hire and employee lifecycle.

Yes. Screeq supports browser-based candidate flows, multilingual experiences, async interviews, distributed review queues, and workflows that work across time zones.

Screeq provides public API and webhook foundations so teams can connect hiring and HR events to existing tools. Pre-built integrations continue to expand over time.

Screeq is AI-first, self-serve, mobile-friendly, and built around one candidate-to-employee record instead of separate legacy modules stitched together by implementation projects.