At Mercer | Mettl, our mission is to enable organizations to build winning teams by taking credible people decisions across two key areas -- Acquisition and Development. Since our inception in 2010, we have partnered with 4000+ corporates, 31 sector skill councils/government departments, and 150+ educational institutions across 90+ countries. Our research-backed assessments, efficient cloud platform, and in-depth analytics help us deliver transformative results for our clients and their employees. We create customized assessments across the employee lifecycle, including pre-hiring screening, candidate skills assessment, training, and development programs for employees/students, certification exams, contests and beyond.
AES256 at rest and TLS 1.2 in transit
Countries of data storage
AWS Mumbai, AWS China or AWS EU depending on the customer contract.
Data storage method
AWS Cloud Services is used for processing and storing all client data.
Data retention policy
Being the processor, Mercer | Mettl follows the guidelines for retention period from client. As an organization, Mercer | Mettl retains the data for 3 years.
Incident management program, policy, and testing
In line with ISO27001, the Incident Management program is in place and reviewed when there is any change, or at least once a year.
Disaster recovery and business continuity plan and testing
BCP is tested as backup is maintained in AWS and instances are created with existing back up. During pandemic, Mercer | Mettl served all clients without any issues showcasing availability and continuity. Controls are implemented as per ISO27001 guidelines.
Security Standard Certificates
Third party testing and security controls practices
Third party is engaged for audit as per ISO27001 once a year.
As a default setting, Mercer | Mettl only requires the first name (non PI) and email ID (PI) as mandatory fields to administer a test-taker’s assessment. If needed, these two parameters can be obfuscated by the data controller or the data subject. For instance, a test-taker named Elrich Bachman, with an email id ‘firstname.lastname@example.org’ can be provided with the first name as ‘abcde’ and email ID as ‘email@example.com’ by the data controller while mapping at the controller’s end.
We are committed to providing an accessible interface for our test takers and client users for which we are approaching accessibility in two ways: compliance or standards based approach and real world accessibility.
Standards Based Approach
We are working towards making our test taking experience comply with the Web Content Accessibility Guidelines 2.1(WCAG 2.1) which is a series of web accessibility guidelines published by the Web Accessibility Initiative (WAI) of the World Wide Web Consortium (W3C), the main international standards organization for the Internet. These are a set of recommendations for making Web content more accessible, primarily for people with disabilities—but also for all user agents, including highly limited devices, such as mobile phones.
Real World Accessibility
We are continuously working towards ensuring that our services can be used in practice by a person with disabilities of various types by testing with devices such as the mainstream screen readers, voice control software and screen magnification technologies. Adding this element to our approach ensures the practicalities of using assistive technologies, or implementation of other adjustments which may be required while preserving the integrity and usability of our assessments. It is important to note that not all of our assessments are accessible to all assistive technologies or accommodations, today or in the future. For example, where the measurement of a core construct of an assessment would cause an undue burden or compromise to the intent of the assessment, we will not be able to support it.
For any questions, concerns or accessibility testing details, please reach out to us and we will be happy to answer them to the best of our abilities.