Streamlining Recruitment Process for Clevergig and Its’ Clients Using Iframe Technology

clevergig case study

Overview

A reputable European HR technology firm, Clevergig, collaborated with Aimeice Tech, a well-known IT services company that specializes in HR and educational technology solutions, to develop a web-based platform that enables businesses and recruitment agencies to find full-time and gig workers more quickly. The platform is built on a modern technology stack (Ruby on Rails, AWS, Docker, React, etc.) and has robust functionality for streamlining candidate application and employee onboarding processes through effective document and invoice management, task planning, and collaboration.

The platform, as powerful and feature-rich as it was, included multiple web pages and was difficult to navigate for non-technical users. Specifically, issues arose when our clients' customers redirected candidates from their corporate websites to the platform, resulting in a 25% drop in applications. To address this problem, Clevergig once again tapped into Aimeice’s technology consulting and software engineering services.

Name

Clevergig

Founded

2016

Industry

Recruitment

Mission

Simplify potential employees onboarding

Key Products

Iframe generator solution

Location

Netherlands

Funding Raised

$5M

Clutch Review

4.8 ★★★★★

Problem

Facilitating the Application Process and Fortifying Security

After conducting a thorough analysis of job applicants' user journeys, Aimeice Tech proposed a simple but effective solution: integrate job application forms directly into the company's clients' websites rather than redirecting applicants to the recruitment platform. For this, we suggested using the Inline Frame (iframe) technology—an HTML element that allows you to embed content from external websites to a specific area of a web page without merging it with your page’s HTML structure.


While the approach could potentially improve the user experience and increase the number of applications, extra measures needed to be taken to prevent cyberattacks, such as cross-site scripting (XSS), and ensure compliance with industry- and region-specific data protection regulations. Here’s how we achieved that.


End-to-End Data Encryption

Aimeice Tech implemented robust data encryption protocols to ensure that all information applicants entered into iframe forms was securely transmitted and stored in Clevergig’s private cloud infrastructure.


This task encompassed:


  • ⚫ Securing the data entered into the application form as it travels from an applicant's browser to the company's server. We used the Transport Layer Security (TLS) protocol and ensured that HTTPS was used at all times.

  • ⚫ Protecting the applicants' personal information while at rest. Aimeice Tech accomplished the task by implementing several encryption standards, including AES-256 and secure key management technologies (AWS KMS).

  • ⚫ Preventing third parties from accessing sensitive information. Our team set up client-side data encryption with robust JavaScript libraries and asymmetric encryption methods.

These steps helped our client safeguard applicant data while maintaining privacy and compliance with data protection regulations such as GDPR.


Service Isolation

To reduce security risks, Aimeice implemented the custom iframe generator as a separate service. We sandboxed the application form to ensure that any vulnerabilities in the iframe code had no direct impact on Clevergig’s corporate website or its clients' services. Furthermore, by decoupling the iframe generator from the core platform, we improved its overall security architecture.


Protection Against DDoS Attacks

To prevent cybercriminals from using the iframe generator to launch distributed denial of service (DDoS) attacks on the recruitment platform, resulting in downtime, Aimeice Tech enabled advanced DDoS protection mechanisms such as constant traffic monitoring and rate limiting. These safeguards kept the iframe service operational, allowing the embedded forms to handle large amounts of traffic without sacrificing performance or security.

Solution

Deploying the Iframe Technology in a Risk-Free Way

Aimeice Tech meticulously planned and carried out the deployment of the iframe generator. We carried out extensive security assessments and penetration testing prior to going live to identify and correct existing vulnerabilities and potential security flaws. Our team also implemented continuous monitoring systems after deployment to detect and respond to any suspicious activity in real time.


The iframe generator not only improved the recruitment process for the HR technology company and its clients, but it also ensured the security of the websites that hosted the embedded code. By using Content Security Policy (CSP) headers, Clevergig limited the sources from which content could be loaded, preventing malicious code injection. To address emerging threats and vulnerabilities, the Aimeice Tech team continues to patch and update the iframe generator service on a regular basis.

Ruby on Rails
React.js
AWS
PostgresSQL
Redis

About the Client

Clevergig is a leading workforce management platform based in Amsterdam, Netherlands, established in 2016. The company provides innovative software solutions tailored for small and medium-sized staffing agencies, focusing on enhancing the efficiency of scheduling, time tracking, and invoicing processes. With a commitment to user-friendliness and operational excellence, Clevergig has positioned itself as a vital tool for temp agencies and businesses that rely on flexible labor.

Michel Pilet (1)

Michel Pilet, CEO, Clevergig

Streamline Recruitment Process

Measurable Results

A 35% increase in application numbers during the first three months of implementation

50% less time spent on filling out job applications

Zero security breaches reported since the deployment of the iframe generator

Outcomes and Next Steps

The iframe generator solution enabled Clevergig to streamline the job application process for prospective employees while increasing the number of hires for their clients. By addressing security concerns proactively with robust encryption, service separation, and DDoS protection, Aimeice Tech helped the customer avoid downtime, reputational damage, and fines for violating data protection regulations.

Aimeice Tech intends to improve the iframe generator by incorporating AI-driven analytics, which will provide more detailed insights into applicant data and improve the overall user experience. Future updates will also prioritize increasing scalability to handle higher traffic volumes as our customer seeks new business opportunities.

Let's work together

Ready to collaborate? Reach out to us and let's innovate the future

    We store and process your personal data to deliver the requested content. Please check the box below to allow us to store your personal data.

    I have read and accept the terms of the Privacy Policy.