Skip to main content
Security & Compliance

Employee Lifecycle

Files.com manages the full employee lifecycle through formal policies that cover hiring, onboarding, performance evaluation, and termination. These policies support security, confidentiality, and operational excellence across the organization. Related access controls are reviewed as part of our annual SOC 2 Type II audit.

Job Descriptions

Every position at Files.com has a written job description that defines role responsibilities, including safeguarding confidential and sensitive information. We review and update job descriptions to reflect evolving requirements and address identified skills gaps.

Background and Credential Checks

Before employment, every Files.com employee completes a pre-screening process that includes reference checks, education and certification verification, and criminal background checks where legally permissible.

Training

Every new employee completes standardized security awareness training during onboarding. Ongoing training reinforces company policies, particularly those covering security and data protection. We also deliver targeted training to close identified skills gaps.

Employee Onboarding

Files.com follows a formal onboarding process for every employee. Each employee receives a unique user identifier and gains access to internal systems based on job role and need-to-know principles. Employees sign confidentiality agreements during onboarding, and access controls are enforced through our internal identity management and VPN systems.

Performance Management

We review employee performance regularly, with formal reviews at least annually. These evaluations assess role-specific performance, confirm compliance with security and confidentiality responsibilities, and support employee development.

Disciplinary Action

We handle disciplinary actions case by case, based on the specific facts and circumstances. Outcomes range from coaching to formal discipline to termination.

Termination and Offboarding

Files.com follows a structured termination process that immediately revokes access when an employee departs. Nearly all internal systems are gated through VPN access, which we disable at the time of termination.

All company-owned devices are managed through Mobile Device Management (MDM). At termination, we remotely disable devices and render them unusable by the former employee. Devices are then returned to Files.com.

As a matter of policy, Files.com does not disclose information about individual terminations.

Contractors

Contractors complete the same pre-screening, onboarding, access control, and confidentiality procedures as full-time employees. That includes background checks, signing confidentiality agreements, and completing standardized security awareness training.