The Flatchr API is an open API but because of the data present which concerns candidate data (RGPD).

It would be more secure to manage permission scopes at the API key level in order to restrict the scope of actions.

Permission scopes could be:

This improvement significantly increases the security of customer data in case the API key is intercepted.