How we protect your privacy
Overview of privacy controls directed at users.
Privacy
Understand how personal information is handled, protected, and governed across our platform.
Understanding personal information flows
Guide for employer privacy teams on data movement and stewardship.
Legal and Compliance
Understand how personal information is handled, protected, and governed across our platform.
Privacy Notice
Current privacy notice for platform users and customers.
Recently Updated
End User Terms of Service
Terms that govern use of the service by end users.
Master Service Agreement for Employers
Master contract terms for employer customers.
Data Processing Agreements
Contractual terms for processing and protection of customer data.
AI Compliance
How we use artificial intelligence, apply controls, and provide audit-oriented documentation.
How Plum Uses and Controls Artificial Intelligence
Policy-level explanation of AI usage boundaries and controls.
Audits and Compliance
Audit and assurance information for AI-related controls.
Restricted
I/O Pshycology
Technical Manual
Scientific methodology and validation of the Plum Assessment.
Security Program
Security architecture, controls, policies, and testing outcomes that support customer due diligence.
Restricted
Security Control Guidelines
Overview of Plum Platform architecture, services, security controls, and comprehensive data flows.
Business Continuity and Disaster Recovery Summary for Customers
Program summary for resilience, response, and recovery planning.
Subprocessor list
Current list of subprocessors and service categories.
Pentest archive
-
2025 Pentest Results Restricted Most RecentArchive report for the 2025 penetration test cycle.
-
2024 Pentest Results RestrictedArchive report for the 2024 penetration test cycle.
-
2023 Pentest Results RestrictedArchive report for the 2023 penetration test cycle.
Environmental, Social, and Governance
Our commitments and operating principles for responsible growth and customer trust.
Environmental, Social and Governance commitments
Our ESG commitments and principles for responsible operations.
Diversity, Equity, Inclusion, and Belonging
Inclusive culture built on growth mindset, psychological safety, and equitable practices.