How We Designed Candidate Search without Data Leakage

We developed a candidate search system that protects personal data while improving the quality of recruitment.

04 Jun 2026

---

Introductory Notes on the Candidate Search Problem

One day, a discussion sparked in our Slack channel about how we could improve candidate search. One of the developers raised an important question: "How can we ensure that candidates' personal data will not be exposed when using our tool?" This was not just a hypothetical issue; the reputation of our company and user trust were at stake.

Why This Matters

In a competitive job market, the ability to efficiently find and select candidates becomes critically important. We work with numerous resumes and data that contain sensitive information. A breach of confidentiality could lead not only to legal consequences but also to a loss of user trust, negatively impacting our product. Therefore, we understood that addressing this issue required special attention.

The Specific Problem

One scenario we considered involved a case where a candidate's data could be accidentally transmitted to third parties via the API. This occurred when our candidate matching algorithm attempted to find similarities between resumes and job postings without accounting for restrictions on access to personal information. This case signaled to us the need to reassess our architecture.

Initial Steps and Setbacks

We began by analyzing existing solutions on the market. One of the first approaches was to use traditional data encryption methods. However, after several iterations, we realized that this solution did not provide sufficient flexibility for further data handling. This led us to conclude that we needed something more specialized than standard encryption methods.

Technical Approach

Ultimately, we decided to integrate an approach based on differential privacy. This method allows us to analyze data without disclosing personal information by adding random noise to the data. As a result, we were able to use the data to enhance the quality of recruitment without compromising confidentiality. Here is a code example illustrating this approach:

import numpy as np

def add_noise(data, epsilon):
    noise = np.random.laplace(0, 1/epsilon, size=data.shape)
    return data + noise

This method not only helped us protect the data but also improved the quality of candidate selection, positively impacting the user experience.

Changes in the Product

After implementing the new approach, we began to notice positive changes in our product. The quality of candidate matching increased, and we received positive feedback from users. Moreover, we were able to enhance the sections on /jobs and /for-candidates, providing more accurate recommendations while maintaining data confidentiality. Our team also updated the documentation to reflect the new data protection mechanisms.

What We Learned

During the process of working on this task, we made several unexpected discoveries:

The use of differential privacy not only protects data but also improves the quality of analytics.
Often, the simplest solutions turn out to be the most effective.
It is important not only to implement protection but also to explain to users how it works.

What This Means for Candidates

For candidates, our solution means that their personal data is secure. They can be confident that by submitting their resumes on the platform, their information will not be shared with third parties. We strive to create a trustworthy environment for job searching, which is a crucial aspect in today's world.

What This Means for Recruiters

For recruiters, this means they can effectively use our platform to find candidates without fearing data leaks. The tools we provide now allow for finding suitable candidates while ensuring that all necessary security measures are in place. This significantly streamlines the recruitment process and enhances its quality.

Next Steps

Despite the results achieved, we still have much work to do. We continue to monitor new approaches in data protection and are considering implementing additional measures, such as using blockchain for storing resumes. If we could start over, we would conduct a more detailed analysis of existing solutions at earlier stages of the project to avoid some initial mistakes. We are confident that further work on data protection will make our platform even more reliable and effective. ---

Also on Fitlane AI

Topics: поиск кандидатов, приватные данные, безопасность данных, машинное обучение, анализ данных, Fitlane, AI

All posts