What is Selenios and how does it work?

Selenios is an AI-Native recruitment platform that combines a modern ATS with specialized artificial intelligence agents. These agents automate sourcing, pre-screening, interview scheduling, and candidate evaluation, allowing talent acquisition teams to focus on strategic decisions.

How does Selenios compare to Greenhouse, Teamtailor, or Manatal?

Unlike traditional ATS that only organize data, Selenios actively executes tasks. Our AI agents perform pre-screening 24/7, search for passive candidates like a head hunter, and generate automatic scorecards. It's like having an additional recruitment team working around the clock.

How long does it take to implement Selenios?

Full implementation takes 4 weeks with a dedicated Implementation Manager. If you prefer to integrate it with your current ATS, the connection is done in days. We offer guided data migration and training for your entire team.

Is it safe to migrate my data to Selenios?

Absolutely. Selenios holds SOC 2 Type II certification and GDPR compliance. All data transfers are encrypted and validated at every step. Our Trust Center is publicly available.

What integrations does Selenios support?

Selenios integrates natively with Greenhouse, Lever, and SAP SuccessFactors, and offers connectivity with 60+ other ATS platforms. We also support Google Calendar, Zoom, Microsoft Teams, WhatsApp, and Slack. An open API enables custom integrations.

How does the Head Hunter AI work?

The Head Hunter AI is an autonomous agent that searches for passive candidates 24/7. It analyzes millions of profiles, identifies matches based on your criteria, and generates personalized outreach. It continuously learns from your preferences to improve candidate quality.

Can I use Selenios to recruit field workers or staff without a resume?

Yes. Selenios includes native WhatsApp flows designed for profiles that don't have a resume or LinkedIn. Conversational pre-screening via WhatsApp allows you to evaluate candidates in a simple and direct way, with significantly higher engagement than email.

What assessments does Selenios include?

Selenios includes built-in assessments to evaluate candidates objectively: BigFive personality test, DISC behavioral profile, English proficiency evaluation, and an AI Fluency assessment that measures how prepared a candidate is to work with AI tools. Results are automatically added to each candidate's scorecard.

How does Selenios measure candidate experience and communication?

Selenios tracks cNPS (Candidate Net Promoter Score) to gauge candidate satisfaction throughout the process. It also centralizes candidate communication across multiple channels —email, WhatsApp and more— with automated follow-ups, reminders and real-time replies, ensuring a fast and transparent experience.

Is Selenios enterprise-ready? Does it support SSO, roles and audit logs?

Yes. Selenios offers enterprise SSO (SAML 2.0 and OIDC), role-based access control with granular permissions and position-restricted roles, complete audit logs of every action, AES-256 encryption in transit and at rest, SOC 2 Type II certification and GDPR compliance with right to erasure and data portability. Data is permanently deleted 90 days after the contract ends.

Can I use Selenios from Claude or ChatGPT?

Yes. Selenios includes an official MCP (Model Context Protocol) server that lets you query your pipeline, candidates, interviews and metrics directly from Claude, ChatGPT or other compatible assistants. You can also ask your AI assistant to compare Selenios with other platforms: our site serves Markdown and llms.txt so agents can read it easily.

How can I get started with Selenios?

You can schedule a personalized demo with our team to see Selenios in action. During the demo, we analyze your current recruitment process and show you how AI agents can optimize it. Full implementation takes 4 weeks with a dedicated Implementation Manager.

What is SOC 2 Type II and why does it matter in an ATS?

SOC 2 Type II is a certification that audits a vendor's security controls over time — not at a single moment — across five criteria: security, availability, processing integrity, confidentiality and privacy. It matters for an ATS because it proves, with evidence audited by a third party, that the vendor protects candidate data consistently and doesn't just claim it on their website.

What security controls should an AI-powered ATS have?

At a minimum: data encryption in transit (TLS) and at rest, enterprise SSO via SAML with SCIM provisioning, role-based access controls (RBAC), audit logs, backups and an incident response plan. When AI is involved, add data governance controls: where information is processed and whether candidate data is or isn't used to train models.

Does GDPR compliance apply if my company isn't in Europe?

Yes, in two common cases: if you process data of candidates residing in the European Union, or if your company operates with European clients or subsidiaries. Beyond that, GDPR became the de facto standard for data protection: many companies in LATAM require it from vendors as a maturity benchmark, even when it isn't legally mandatory for them.

How do I verify a vendor's security guarantees?

Ask for access to their Trust Center, where certificates (SOC 2, ISO 27001 if applicable), subprocessors, retention policies and the incident response plan should be documented. If a vendor can't show audited evidence and only offers marketing statements, treat that as a red flag.

Enterprise security in an ATS: SOC 2, GDPR and what to require before buying

Enterprise security in an ATS: what to require before buying

An ATS is one of the most sensitive systems a company runs: it holds resumes, contact data, evaluations and sometimes salary information for hundreds or thousands of people. When that ATS also uses AI to process this data, security stops being a compliance checkbox and becomes a central decision criterion. This guide explains what SOC 2 and GDPR mean, which controls matter and how to evaluate a vendor.

Key Takeaway

If an ATS vendor can't show you third-party audited evidence — and only offers marketing statements about how "secure" they are — treat that as the answer. Enterprise security is proven with certifications and a Trust Center, not with adjectives.

SOC 2 Type II: the trust standard

SOC 2 is a certification that audits a vendor's security controls across five criteria: security, availability, processing integrity, confidentiality and privacy. The difference between Type I and Type II is key:

Type I evaluates the design of controls at a single point in time.
Type II evaluates that those controls operate consistently over time (typically 6-12 months).

For an ATS, SOC 2 Type II is the floor. It proves, with evidence audited by an independent third party, that the vendor protects candidate data on a sustained basis.

The controls that matter

Control	What it solves
Encryption in transit and at rest	Data travels and is stored encrypted
Enterprise SSO (SAML) + SCIM	Access governed by your corporate directory
Role-based access controls (RBAC)	Each user sees only what they should
Audit logs	Traceability of who accessed what
Incident response plan	What happens if something goes wrong
AI data governance	Where it's processed and whether it trains models

The extra layer when AI is involved

An AI-powered ATS adds a question a traditional ATS never had: what happens to candidate data when a model processes it? The concrete questions to ask:

Where is data processed (region, subprocessors)?
Is candidate data used to train third-party models? (The correct answer is usually "no.")
Is there isolation between different customers' data?
Can a candidate's data be deleted on request (right to be forgotten)?

SOC 2 Type II

the audited standard that proves sustained security controls over time, not just at a single moment

Fuente: Selenios Trust Center

Even if your company isn't in Europe, GDPR matters: it applies if you process data of European residents and, beyond the legal obligation, it became the maturity benchmark for data protection. Many companies in LATAM already require it from vendors as a filter, because it guarantees practices like data minimization, consent, right to be forgotten and portability.

Vendor evaluation checklist

Does it hold a current SOC 2 Type II (not just Type I)?
Is it GDPR compliant?
Does it offer encryption in transit and at rest?
Does it have enterprise SSO with SCIM and RBAC?
Does it document where data is processed with AI?
Does it guarantee data isn't used to train third-party models?
Does it have a public Trust Center with evidence?

How Selenios solves it

Selenios holds SOC 2 Type II certification, GDPR compliance, encryption in transit and at rest, enterprise SSO with SCIM, role-based access controls and a public Trust Center documenting these guarantees. Security isn't a separate module — it's part of the product design.

Schedule a demo

Enterprise security in an ATS: what to require before buying

Key Takeaway

SOC 2 Type II: the trust standard

Type I evaluates the design of controls at a single point in time.
Type II evaluates that those controls operate consistently over time (typically 6-12 months).

For an ATS, SOC 2 Type II is the floor. It proves, with evidence audited by an independent third party, that the vendor protects candidate data on a sustained basis.

The controls that matter

Control	What it solves
Encryption in transit and at rest	Data travels and is stored encrypted
Enterprise SSO (SAML) + SCIM	Access governed by your corporate directory
Role-based access controls (RBAC)	Each user sees only what they should
Audit logs	Traceability of who accessed what
Incident response plan	What happens if something goes wrong
AI data governance	Where it's processed and whether it trains models

The extra layer when AI is involved

An AI-powered ATS adds a question a traditional ATS never had: what happens to candidate data when a model processes it? The concrete questions to ask:

Where is data processed (region, subprocessors)?
Is candidate data used to train third-party models? (The correct answer is usually "no.")
Is there isolation between different customers' data?
Can a candidate's data be deleted on request (right to be forgotten)?

SOC 2 Type II

the audited standard that proves sustained security controls over time, not just at a single moment

Fuente: Selenios Trust Center

Vendor evaluation checklist

Does it hold a current SOC 2 Type II (not just Type I)?
Is it GDPR compliant?
Does it offer encryption in transit and at rest?
Does it have enterprise SSO with SCIM and RBAC?
Does it document where data is processed with AI?
Does it guarantee data isn't used to train third-party models?
Does it have a public Trust Center with evidence?

How Selenios solves it

Schedule a demo

Enterprise security in an ATS: SOC 2, GDPR and what to require before buying

Enterprise security in an ATS: what to require before buying

SOC 2 Type II: the trust standard

The controls that matter

The extra layer when AI is involved

Vendor evaluation checklist

How Selenios solves it

Related articles

Enterprise SSO in your ATS: what SAML, SCIM are and why recruiting needs them

How to avoid AI bias when reviewing resumes

Legal checklist: data privacy in AI recruitment (Latam)

Enterprise security in an ATS: SOC 2, GDPR and what to require before buying

Enterprise security in an ATS: what to require before buying

SOC 2 Type II: the trust standard

The controls that matter

The extra layer when AI is involved

Vendor evaluation checklist

How Selenios solves it

Related articles

Enterprise SSO in your ATS: what SAML, SCIM are and why recruiting needs them

How to avoid AI bias when reviewing resumes

Legal checklist: data privacy in AI recruitment (Latam)