200+ hires / year · For multi-team TA orgs

Recruitment at enterprise scale, with the controls procurement asks for.

Enterprise hiring is not "the same thing, bigger." It is governance, audit, identity, residency, and reporting — on top of recruitment. We build for all of it.

Talk to sales Request security pack
What changes

The gap your last ATS left open

Your reality today
With LeapOne
Your security team asked you to inventory every AI prompt sent on the company's behalf. You cannot.
Per-org prompt audit log with hash chaining — every AI call recorded, signed, and replayable for any audit.
Six regions, six data residency rules, one ATS that does not understand any of them.
Per-org infrastructure controls and data residency options that map to your compliance footprint.
You bought SSO as a separate SKU at twice the seat price. Same for SCIM. Same for the audit log.
SAML SSO, SCIM provisioning, full audit log — included on the Enterprise plan, not unbundled.
Finance asks for cost-per-hire by department. You assemble it in a spreadsheet once a quarter.
Per-org operational cost reporting with department, role, and recruiter dimensions — built into the admin portal.
Legal flagged your AI screening rubric and you have no way to roll it back across 80 active roles.
Versioned AI policies. Roll a rubric forward or back across an org with one action; every change captured in the audit log.
Built for enterprise

The controls procurement asks for

SSO, SCIM & audit log included

SAML SSO with your IdP of choice. SCIM provisioning for joiners/leavers. Full immutable audit log — not a $20K add-on.

Tier-1 AI compliance

Per-org prompt audit log with hash chaining — every AI call recorded, signed, and replayable for legal or regulator review.

Operational cost reporting

Per-org cost dashboards in the admin portal — break out spend by AI usage, seats, integrations, and per-recruiter loaded cost.

Custom annual pricing

Volume-aligned annual contracts, billed in your currency, with terms that pass your procurement team's template review.

Multi-org & multi-region

Run multiple BUs, geos, or subsidiaries with isolated data, shared identity, and consolidated reporting. Federate or separate per-org as needed.

Named CSM + SLA

A named CSM, a quarterly business review, and a contractual SLA on uptime and incident response. Not "priority tickets" — actual accountability.

Security & compliance posture

What our security team has already shipped

SAML SSO + SCIM

Okta, Azure AD, Google, custom IdPs.

Immutable audit log

Every write captured; SIEM export via webhook.

AI prompt audit log

Per-org hash chain; every prompt signed.

Data residency options

Per-org region pinning for multi-geo orgs.

Versioned AI policies

Rubric and prompt changes rollable forward / back.

DPA, BAA, buyer-paper MSA

Standard or custom under NDA.

Full security pack (latest SOC-2 report, SIG-Lite, DPA template) available under NDA — request access.

FAQ

Questions enterprise procurement asks

Where is candidate data stored?
Default region is your choice at provisioning time. We support hosted infrastructure in multiple regions; the Enterprise plan includes per-org region pinning so subsidiaries in different jurisdictions stay in-region.
Do you support SAML SSO and SCIM?
Yes. SAML 2.0 SSO with any IdP (Okta, Azure AD, Google Workspace, JumpCloud, OneLogin, custom). SCIM 2.0 provisioning for automated joiner/leaver flows. Both included on the Enterprise plan.
What is captured in the audit log?
Every write action: pipeline moves, scorecard edits, permission changes, AI prompt sends, AI rubric changes, document signatures, data exports. Immutable, exportable to SIEM via webhook, retained for the life of the org.
How does the AI prompt audit log work?
Every AI call made on your org's behalf is captured with input, output, model version, and a hash linked to the previous entry — a hash chain. Tampering is detectable by re-verifying any segment. Available to your security team via API; reviewable in-app by org admins.
Can we author custom AI policies — what the AI can and cannot do?
Yes. Per-org policy controls govern which AI features are enabled, what data they can access, and which models they can use. Policies are versioned and changes appear in the audit log.
Do you have a SOC 2 / ISO 27001 report?
Reach out via the contact form and our security team will share the most recent reports under NDA along with a current SIG-Lite response.
Can we get a DPA, BAA, and our standard vendor MSA?
DPA: yes, standard or custom. BAA: yes for relevant US health-sector buyers. We accept buyer-paper MSAs on the Enterprise plan and have negotiated through procurement reviews at Fortune-500 buyers.

Move now

Get past procurement in one cycle

The compliance pack ships before the demo. Most enterprise procurement reviews close in under 30 days.

Talk to sales Request security pack