Sapia.ai

Diversity Hiring

Our Smart Interviewer is a blind/anonymous, chat-based assessment tool, which means it’s able to avoid the biases introduced by names, faces, locations, and other irrelevant factors. Research from our data scientists has shown that our AI disrupts gender and race bias, increases hiring diversity, and helps companies track DEI goals.

Features

• 24/7 user support
• Real time reporting including diversity, fairness and candidate satisfaction metrics
• Customisable branding including colours, logo, tone of voice, video
• ISO27001, GDPR and SOC 2 Type 2
• Text based and video interview
• Customisable user permissions, access and Single Sign-On (SSO)
• Personality & behavioural assessment including personalised candidate insights
• Language assessment
• Open API (Swagger) and ATS integration
• Data Sovereignty

Benefits

• Monitor and eliminate bias within recruitment, internal mobility and hiring
• Dramatically reduce time to hire, in some cases < 39hrs
• Ability to screen candidates for job and value fit
• Improved candidate experience with 9.1/10 candidate satisfaction
• Smart shortlisting capability saving recruitment teams thousands of hours
• Every candidate receives personalised insights removing the risk of 'ghosting'
• Proven to reduce employee churn
• Obtain actionable People Analytics
• Achieve diversity targets through anonymised smart interviewing
• Ability to conduct and score video interviews with job applicants

£56 to £200.00 a unit

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at g-cloud@sapia.ai. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

420563927075724

Contact

Angela Lindberg
07470 863253
g-cloud@sapia.ai

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: We may be used as an add-on (integration) with your existing Applicant Tracking System (ATS) or Human Resources Information System (HRIS)
• Cloud deployment model: Public cloud
• Service constraints: None
• System requirements: Internet Browser

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: At the time of writing, average response to user tickets is 2 hours Monday to Friday. 24/7 support for critical issue with direct line available to dedicated Customer Success Manager
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: Web chat
• Web chat support availability: 24 hours, 7 days a week
• Web chat support accessibility standard: WCAG 2.1 AA or EN 301 549
• Web chat accessibility testing: This is managed by a third-party, Intercom, who confirm that the Messenger is accessible via screen readers. Additionally all text in the web Messenger is clearly visible when using colours with enough contrast. Every component of the Messenger can also be accessed using a keyboard without requiring a mouse or trackpad. Visual indicators of focus are present for sighted users
• Onsite support: Yes, at extra cost
• Support levels: All clients have a dedicated Customer Success Manager accessible by phone, email and onsite if required. The CSM is trained to provide full technical assistance with configuration and incident management, will full back up from cloud support engineers. Included in the cost is 24/7 support Monday - Friday, with service for any critical issues across the weekend. Support teams are based across the UK and Australia, allowing us to provide 24/7 cover.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Onboarding is customisable and tends to be driven by the complexity of change. A key group of stakeholders will be engaged to help with the solution design, configuration and deployment of the service. User onboarding can be digital or onsite. Digital onboarding includes training (via Zoom or similar), webinars, electronic product tours, emails, pop up messages in the service. We can also assist with change management, and templates are available to help you communicate the change to your user base. We assign a project manager to lead to the implementation and onboarding
• Service documentation: Yes
• Documentation formats: HTML
• End-of-contract data extraction: We can provide you with a "data dump" or copies of your data outside existing functionality, but you and us may separately agree for a chargeable Statement of Work covering the provision of a "data dump"
• End-of-contract process: We may separately agree a final, transactional services Statement of Work to assist you with the transition of Services fro us to you or a new provider. Any additional SOW may be chargeable. If no transfer is required or agreed, all data is deleted at the end of the contract

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Recruitment candidates can access the service with mobile device - in fact it is designed to be used on a phone. The web application that internal users access is designed to be used on a desktop/laptop
• Service interface: No
• User support accessibility: WCAG 2.1 A
• API: Yes
• What users can and can't do using the API: The API can be used to integrate with other systems in use, such as an existing Applicant Tracking System (ATS) or HR Information System (HRIS). Set up depends if Sapia is part of the 'marketplace' of the other tech provider. If we are, it's an easy switch on by configuring API keys (provided by us). If not, our team build and deploy a new integration, normally in 4-6 weeks. No limitations are set by our service, however there may be limitations with the other tech provider out with our control
• API documentation: Yes
• API documentation formats:
  • Open API (also known as Swagger)
  • ODF
  • PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Buyers can completely customise our service - branding, colour scheme, tone of voice, text and video content, interview questions etc. Currently this is completed on your behalf by our Customer Success Manager but we are currently building the capability to self-serve

Scaling

• Independence of resources: We use Amazon Web Services's (AWS) elastic load services. These services allow us to scale infrastructure capacity based on load

Analytics

• Service usage metrics: Yes
• Metrics types: We provide a number of different metrics to show how many of your candidates have started/completed their interview. Drop out rate, candidate scores and feedback. Diversity & Inclusion stats showing fairness between genders and ethnicity. We can provide metrics on all the data that we process
• Reporting types:
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Physical access control, complying with another standard
  • Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Users can export directly from within our web application. Individual reports can also be downloaded in PDF format from the service
• Data export formats:
  • CSV
  • Other
• Other data export formats: PDF
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: The availability of the Sapia platform is 99.5%
• Approach to resilience: Available on request under NDA
• Outage reporting: Email alerts & by phone (depending on severity)

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: Buyers can define user groups to manage access. For example, different profiles can be created for recruitment users versus hiring managers. Following GDPR minimisation principles, users can only access the data which is needed for their job role. This is all designed using 'organisational hierarchy'
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: No audit information available
• Access to supplier activity audit information: No audit information available
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: AssuranceLab
• ISO/IEC 27001 accreditation date: 18/07/2023
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications:
  • SOC 2 Type 2
  • ISO 27017
  • ISO 27018

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards:
  • ISO/IEC 27001
  • Other
• Other security governance standards: ISO 27017 and ISO 27018
• Information security policies and processes: We follow all security policies as required by ISO 27001. Each policy is available to buyers under NDA from https://security.sapia.ai/. The Chief Executive Officer takes responsibility to ensure policies are followed

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: Both developed code and infrastructure (infrastructure as code) is managed using code. Every change is approved using a change request system, and code is scanned for vulnerabilities using CodeQL scanning
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Production code and infrastructure managed by Sapia is scanned for vulnerabilities. Meetings are held monthly to review these vulnerabilities for remediation. We utilise a large number of Amazon Web Services 'serverless' products, vulnerability management and patching is managed by them, to the highest standards, more information is available here: https://aws.amazon.com/serverless/
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Potential compromises - we utilise AWS's intrusion detection system, 'GuardDuty', which monitors for suspicious behaviour across our cloud environment 24/7. Sapia has a comprehensive breach response strategy that is based on the pillars of (1) identifying a breach, (2) communicating a breach, (3) containing/responding to the breach (and escalating where needed), (4) reviewing the breach and communication to stakeholders (customers, authorities, etc.). We ensure security incidents are responses to as quickly as viably possible
• Incident management type: Supplier-defined controls
• Incident management approach: We have a comprehensive generic incident breach response playbook. This playbook is designed to be useful in responding to all security events. For non-security events, we do have support emails which can be used by customers/candidates to report issues. We do not have pre-defined processed for common events, as we engineer long term solutions to problems, to prevent common reoccurrence.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Equal opportunity
  • Wellbeing

  Equal opportunity

  Sapia.ai delivers social value by removing bias and increasing fairness in the screening, shortlisting, assessment and interview process. Our automated chat lets you interview everyone and because it’s low pressure, every applicant gets a chance to bring you their real and best self. The process is blind and untimed, meaning that all applicants have an equal chance to to shine. It’s a highly inclusive screening and shortlisting process, and has incredibly high satisfaction rates with neurodiverse and EASL applicants.; To build trust, we do not use sensitive information like gender, age, or race in the scoring model. The AI that sits behind the interview uses only the textual answers provided by the applicant to calculate a score. The AI does not process any other information. As a result, we create a less stressful interview experience and provide equal opportunity.

  Wellbeing

  Sapia.ai delivers social value by removing bias and increasing fairness in the screening, shortlisting, assessment and interview process. Our automated chat lets you interview everyone and because it’s low pressure, every applicant gets a chance to bring you their real and best self. The process is blind and untimed, meaning that all applicants have an equal chance to to shine. It’s a highly inclusive screening and shortlisting process, and has incredibly high satisfaction rates with neurodiverse and EASL applicants.; To build trust, we do not use sensitive information like gender, age, or race in the scoring model. The AI that sits behind the interview uses only the textual answers provided by the applicant to calculate a score. The AI does not process any other information. As a result, we create a less stressful interview experience and provide equal opportunity.

Pricing

• Price: £56 to £200.00 a unit
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at g-cloud@sapia.ai. Tell them what format you need. It will help if you say what assistive technology you use.