Privacy Policy

2.1 Personal Information You Provide

We collect information you voluntarily provide to us, including:

• Account Information: Name, email address, password, phone number, job title, company name
• Professional Profile: Resume, work experience, education, skills, certifications, portfolio
• Communication Data: Messages, feedback, support requests, survey responses
• Payment Information: Billing address, payment method details (processed by secure third parties)
• Identity Verification: Government-issued ID, tax identification numbers (when required)
• Background Information: Employment history, references, criminal background checks (with consent)

2.2 Information Collected Automatically

2.3 Information from Third Parties

• Social media profiles and professional networks (LinkedIn, etc.)
• Public databases and professional directories
• Background check providers and verification services
• Recruitment partners and job boards
• Analytics and advertising partners
• Government and regulatory databases

4.1 Primary Service Purposes

• Provide and operate our HR technology platform and AI services
• Match candidates with job opportunities using our algorithms
• Analyze and score resumes, profiles, and applications
• Generate recruitment insights and analytics
• Facilitate communication between employers and candidates
• Process payments and manage subscriptions
• Provide customer support and technical assistance

4.2 Service Improvement and Development

• Improve our AI models and machine learning algorithms
• Develop new features and services
• Conduct research and analysis on HR trends
• Test and optimize user experience
• Monitor service performance and reliability
• Debug errors and troubleshoot technical issues

4.3 Legal and Compliance Purposes

• Comply with applicable laws and regulations
• Respond to legal requests and court orders
• Prevent fraud, abuse, and security threats
• Enforce our Terms of Service and policies
• Protect our rights and interests
• Conduct audits and regulatory reporting

4.4 Communication and Marketing

• Send service updates and notifications
• Provide customer support and technical assistance
• Send marketing communications (with consent)
• Conduct surveys and gather feedback
• Announce new features and product updates
• Share industry insights and thought leadership

5.1 Authorized Sharing

• With Your Consent: When you explicitly authorize us to share your information
• Job Applications: With employers when you apply for positions or express interest
• Profile Visibility: With recruiters and employers based on your privacy settings
• Service Integration: With third-party services you choose to connect

5.2 Service Providers and Partners

We may share information with trusted service providers who assist us in:

• Cloud hosting and data storage services
• Payment processing and billing
• Email delivery and communication platforms
• Analytics and business intelligence
• Customer support and help desk services
• Background verification and screening
• Marketing automation and CRM systems

All service providers are contractually bound to protect your information and use it only for the specified purposes.

5.3 Legal Requirements

We may disclose your information when required to:

• Comply with applicable laws, regulations, or legal processes
• Respond to valid government requests or court orders
• Protect against fraud, security threats, or illegal activities
• Defend our rights and interests in legal proceedings
• Protect the safety of our users or the public
• Enforce our Terms of Service and policies

5.4 Business Transactions

In the event of a merger, acquisition, reorganization, or sale of assets, your personal information may be transferred as part of the transaction. We will provide notice and ensure continued protection under this Privacy Policy or a similar policy.

6.1 Retention Principles

We retain your personal information only as long as necessary to fulfill the purposes for which it was collected, including:

• Providing and improving our Services
• Complying with legal obligations
• Resolving disputes and enforcing agreements
• Protecting against fraud and abuse

6.2 Specific Retention Periods

6.3 Secure Deletion

When personal information is no longer needed, we securely delete or anonymize it using industry-standard methods to ensure it cannot be reconstructed or identified.

7.1 Technical Safeguards

7.2 Operational Security

• 24/7 security monitoring and incident response
• Regular security audits and penetration testing
• Vulnerability assessments and patch management
• Employee security training and background checks
• Secure development lifecycle (SDLC) practices
• Business continuity and disaster recovery plans

7.3 Compliance Certifications

• SOC 2 Type II certification
• ISO 27001 information security management
• GDPR compliance program
• CCPA compliance framework
• Regular third-party security assessments

8.1 Universal Rights

Regardless of your location, you have the right to:

• Access: Request copies of your personal information
• Rectification: Correct inaccurate or incomplete information
• Deletion: Request removal of your personal information
• Portability: Receive your data in a portable format
• Object: Opt out of certain types of processing
• Restrict: Limit how we use your information

8.2 Regional Rights

8.3 How to Exercise Your Rights

9.1 Types of Technologies We Use

9.2 Managing Your Cookie Preferences

You can control cookies through:

• Our cookie consent banner and preference center
• Your browser settings and privacy controls
• Industry opt-out tools (NAI, DAA, EDAA)
• Platform-specific privacy settings (Google, Facebook)

10.1 Global Operations

As a global service, we may transfer your personal information to countries other than your own, including the United States, where our primary servers and operations are located.

10.2 Transfer Safeguards

When transferring data internationally, we ensure adequate protection through:

• European Commission adequacy decisions
• Standard Contractual Clauses (SCCs)
• Binding Corporate Rules (BCRs)
• Certification programs and codes of conduct
• Explicit consent when required

10.3 Data Localization

Where required by local laws, we maintain data processing facilities and comply with data localization requirements in specific jurisdictions.

12.1 Integrated Services

Our Services may integrate with third-party platforms and services, including:

• Professional networking sites (LinkedIn, etc.)
• Cloud storage providers
• Background verification services
• Payment processors
• Analytics and marketing tools
• Social media platforms

12.2 Third-Party Privacy Policies

This Privacy Policy does not apply to third-party services. We encourage you to review the privacy policies of any third-party services you use in connection with our platform.

12.3 External Links

Our Services may contain links to external websites. We are not responsible for the privacy practices or content of these external sites.

13.1 Applicable Regulations

Our privacy practices comply with:

• General Data Protection Regulation (GDPR) – EU/UK
• California Consumer Privacy Act (CCPA) – California
• Virginia Consumer Data Protection Act (VCDPA) – Virginia
• Personal Information Protection and Electronic Documents Act (PIPEDA) – Canada
• Lei Geral de Proteção de Dados (LGPD) – Brazil
• Other applicable regional data protection laws

13.2 Legal Basis for Processing

We process your personal information based on:

• Contract: To provide our Services and fulfill our agreement with you
• Consent: When you explicitly agree to specific processing activities
• Legitimate Interest: To improve our Services and operate our business
• Legal Obligation: To comply with applicable laws and regulations
• Vital Interest: To protect your safety or the safety of others