Enterprise Security

Authentication & Security

Built on world-class infrastructure, ensuring your data remains protected at every layer. We handle the complexity of security so you can focus on innovation.

AWS Managed OAuth2

We leverage Amazon Web Services (AWS) infrastructure for robust identity management. Our platform does not directly store user credentials, ensuring enterprise-grade protection against data breaches.

SOC 2 Compliant Infrastructure
End-to-End Encryption
Automated Threat Detection

No Direct Endpoints

To maximize security, we do not expose direct authentication endpoints for user login. All access is brokered through secure, time-limited tokens managed by our cloud infrastructure.

"We don't just handle your data; we protect it with the same standards used by Fortune 500 companies."

Developer Access

For programmatic access, efficient integration is achieved via simple, secure API keys. This allows your backend to communicate directly with our analysis engine.

Managing Your Keys

You can view, roll, and manage your API keys directly from the Admin Dashboard. Keep them safe—they are your passport to the platform.

Making Requests

Include your key in the x-api-key header of every request.

Bash

curl -X POST https://api.evalcv.com/v1/parse \
  -H "x-api-key: YOUR_API_KEY_HERE" \
  -F "file=@resume.pdf"

Handling Errors

If a key is missing or invalid, our secure gateway will immediately reject the request with a 401/403 status to prevent unauthorized usage.

JSON

{
  "detail": {
    "error": "AUTH_ERROR",
    "message": "Invalid API Key",
    "suggestion": "Please check your x-api-key header."
  }
}