Zoho Recruit provides the means to protect sensitive and confidential user data via encryption. Encryption is the process of encoding information and making the information accessible only by the authorized parties. The encryption process converts plain (or readable) text into cipher (or non-readable) text, which can only be read when decrypted by an authorized user.

At Zoho Recruit, we use an encryption method called AES (Advanced Encryption Standard), which uses keys to encrypt and decrypt the data.

Data can be encrypted automatically with AES in Zoho Recruit by enabling encryption on a custom field. Encrypting the data does not come in the way of the effective and quick use of Zoho Recruit, by authorized users. It simply prevents unauthorized parties—such as blocked users and potential hackers—from gaining access to sensitive or valuable data.

In Zoho Recruit, a custom field can be encrypted only after it is defined as PII (Personally Identifiable Information). PII is any data that could potentially identify a specific individual.

Setting up data encryption

Data encryption is a way to safeguard the information you store in your Recruit. Only the Data from custom fields can be encrypted. Say, for instance, you need to store confidential information like credit card details, backup phone numbers, etc., you can include those fields in the user layout as custom fields. Data encryption is done when a custom field is created or edited.

Note:

All modules support PII but only the Candidates, Clients, Contacts, Interviews, and any custom modules support encryption.

To encrypt/decrypt custom fields:

1. Go to Setup > Customization > Modules and Fields > [Select the module].
   
2. Select Candidates, Clients, Contacts, Interviews, or any custom module.
   
3. In the module layout editor, go to the field you wish to encrypt, click the Settings icon and select Edit Properties.
   
4. In the Field Properties popup, select the Mark as PII field checkbox.
   
5. Select the Encrypt Field checkbox.
   
6. Click Done.
   
7. Save the layout.
   

Feature Specifications:

Field and Module-based specifications:  

• Only Custom fields (new and existing) can be encrypted. Unique fields can also be encrypted, as long as they are custom/user-generated.
  
• The field types which support encryption are Single Line, Email, Phone, and Number.
  
• Only the Candidates, Clients, Contacts, Interviews, and any Custom Modules support encryption.
  
• Encryption can be disabled for a field at any time.
  
• Encrypted fields can be used as inputs in Formula fields.
  

Handling encrypted data:  

• Find & Merge and Deduplication are supported for encrypted fields.
  
• Any data imported to encrypted fields will be encrypted by default and exported data are decrypted.
  
• Encrypted fields can be included in Web forms.
  
• Encrypted field can be displayed in Reports as a column, but cannot be used in Criterias and Columns to Total.
  
• Encrypted fields can be used as inputs in custom functions, and as merge fields in templates.
  
• APIs are supported for encrypted data.
  
• Encrypted fields can be used in integrations as well. Using the information in an integration is entirely at the user's risk.
  

Limitations and Trade-offs:

• In the global search, you can search only by using the exact words. For instance, if the encrypted data is "Joseph Wells," you will have to search using the exact words "Joseph Wells" and not "Joseph" or "Wells". 
  
• Encrypted fields cannot be used in Advanced Filters.
  
• Encrypted fields cannot be found using Search by Criteria.
  
• Encrypted fields are not visible in the Sort option.
  
• Encrypted information is only stored in the Recruit.zoho.com domain. Use encrypted information in other domains or third-party services at your own discretion.
  
• In the Forecasts module, encrypted fields cannot be used as Target Fields.