Skip to main content

Best Practices

Guidelines for security, performance, and effective data management on DakDan Talent

Security Best Practices

API Key Security

  • Store API keys in environment variables, never in code
  • Rotate API keys quarterly or immediately if compromised
  • Use different API keys for development, staging, and production
  • Set minimum required permissions for each API key
  • Never expose API keys in client-side JavaScript or mobile apps

User Authentication

  • Enable SSO for streamlined and secure authentication
  • Require strong passwords: minimum 12 characters, mixed case, numbers, symbols
  • Enable two-factor authentication (2FA) for admin accounts
  • Review user permissions quarterly and remove inactive accounts

Data Protection

  • Limit data exports to authorized personnel only
  • Encrypt sensitive data before storing in external systems
  • Use HTTPS for all API requests and webhook endpoints
  • Implement role-based access control (RBAC) within your organization

Performance Optimization

API Usage

  • Use pagination for large data sets (limit to 100 results per request)
  • Cache API responses when appropriate to reduce requests
  • Use webhooks instead of polling for real-time updates
  • Batch API requests when possible to reduce overhead
  • Monitor rate limits and implement exponential backoff for retries

File Uploads

  • Compress images before upload (max 2MB recommended)
  • Use PDF format for resumes and documents (max 5MB)
  • Validate file types on client and server side
  • Implement progress indicators for large file uploads

Search & Filtering

  • Use specific filters to narrow results before searching
  • Implement debouncing for search inputs (300-500ms delay)
  • Save frequently used filter combinations for quick access

Data Management

Data Quality

  • Validate data on input to prevent inconsistencies
  • Use standardized formats for dates, phone numbers, and addresses
  • Remove duplicate records promptly to maintain data integrity
  • Audit data quality quarterly and address inconsistencies

Data Retention

  • Archive inactive applications after 2 years
  • Delete candidate data upon request in compliance with GDPR/CCPA
  • Maintain audit logs for regulatory compliance (minimum 7 years)
  • Document data retention policies and communicate to stakeholders

Backup & Recovery

  • DakDan performs daily automated backups of all data
  • Export critical data monthly for external backup (optional)
  • Test data restoration procedures semi-annually
  • Contact support@dakdantalent.com for data recovery requests

Additional Tips

  • Regular Training: Ensure team members complete platform training annually
  • Stay Updated: Subscribe to release notes to stay informed about new features
  • Feedback Loop: Provide feedback to help us improve the platform
  • Support Resources: Bookmark the documentation and FAQ for quick reference

Questions about best practices? Contact support@dakdantalent.com or call (970) 436-0580