Privacy Policy

1.1 Customer Account Data

When a Customer registers for an account, subscribes to the Platform, requests Data regarding the Platform, or otherwise interacts with TalanteEaseAI, we may collect Data including:

• Full name
• Business email address
• Business telephone number
• Employer or organization name
• Job title and department
• Company address
• Usernames and account credentials
• User preferences and settings
• Subscription Data
• Billing and payment-related information
• Communications and correspondence with TalanteEaseAI

We collect and process this Data to create and administer accounts, authenticate users, manage subscriptions, provide customer support, communicate service-related Data, comply with legal obligations, and maintain the security of the Platform.

1.2 Candidate Data

Customers may upload, enter, import, store, manage, or otherwise process Data relating to job applicants and candidates through the Platform.

Such Data may include:

• Full name
• Residential address
• Email address
• Telephone number
• Date of birth (where applicable)
• Nationality
• Professional qualifications
• Educational qualifications
• Employment history
• Professional experience
• Technical and professional skills
• Certifications and licenses
• References and referee details
• Interview notes
• Assessment results
• Recruitment status information
• Compensation expectations
• Offer details
• Other information contained within resumes, curriculum vitae, cover letters, or recruitment documentation

The nature and volume of Candidate Data processed through the Platform is determined by the Customer and may vary depending on the Customer's recruitment processes.

1.3 Resume and CV Data

The Platform permits Customers to upload resumes, CVs, and other candidate-related documentation.

Such documentation may contain personal Data including:

• Career history
• Educational records
• Skills and competencies
• Languages spoken
• Professional memberships
• Publications
• Awards and achievements
• Personal statements
• Contact Data
• References
• Portfolio Data

Where AI-powered features are enabled, portions of this Data may be analyzed to identify skills, competencies, qualifications, experience levels, and other recruitment-related insights.

1.4 Interview and Recruitment Data

The Platform may process Data generated throughout the recruitment lifecycle, including:

• Interview schedules
• Interview notes
• Candidate evaluations
• Candidate feedback
• Hiring manager comments
• Internal assessments
• Candidate rankings
• Hiring recommendations
• Offer management Data
• Recruitment workflow records

This Data is processed solely to facilitate recruitment and talent acquisition activities conducted by the Customer.

1.5 AI-Generated Data

TalanteEaseAI incorporates artificial intelligence functionality to assist Customers in managing recruitment processes.

As a result, the Platform may generate additional Data including:

• Extracted skills and competencies
• Candidate summaries
• Candidate-job matching scores
• Candidate rankings
• Suitability assessments
• Recruitment recommendations
• Job profile suggestions
• AI-generated job descriptions
• Interview summaries
• Recruitment analytics and insights

AI-generated outputs are created automatically using Data provided to the Platform and should be reviewed by Customers prior to making recruitment decisions.

1.6 Technical Data and Usage Data

When users access or interact with the Platform, certain Data is automatically collected through system logs and related technologies.

This Data may include:

• Internet Protocol (IP) address
• Device identifiers
• Browser type and version
• Operating system
• Language settings
• Date and time of access
• Session duration
• Login and logout records
• Pages visited
• Features utilized
• Error logs
• System activity records
• Performance metrics

We collect this Data to maintain security, prevent unauthorized access, diagnose technical issues, monitor Platform performance, improve functionality, and support business continuity operations.

1.7 Payment and Billing Data

Subscription payments are processed through third-party payment processors, including Stripe.

Depending on the payment method used, payment-related Data may include:

• Billing name
• Billing address
• Payment card details
• Bank account Data
• Tax Data
• Transaction history
• Payment status

TalanteEaseAI generally does not store complete payment card Data. Such Data is collected and processed directly by the applicable payment processor in accordance with its own privacy and security practices.

1.8 Communications Data

We may collect Data contained in communications between users and TalanteEaseAI, including:

• Support requests
• Product inquiries
• Feedback submissions
• Survey responses
• Customer service communications
• Technical support interactions

These communications may be monitored, recorded, stored, and reviewed for quality assurance, training, compliance, security, and service improvement purposes.

1.9 Data from Third-Party Integrations

Where Customers choose to connect third-party applications or services to the Platform, TalanteEaseAI may receive Data from such services as authorized by the Customer.

Examples may include:

• HR systems
• Applicant sourcing platforms
• Email providers
• Calendar applications
• Video interview platforms
• Identity and authentication providers

The Data received will depend on the integration selected and the permissions granted by the Customer.

1.10 Data We Do Not Intentionally Collect

TalanteEaseAI does not intentionally collect Personal Data that is unrelated to recruitment, talent acquisition, human resources management, or the operation of the Platform.

Customers are responsible for ensuring that they do not upload Data that is unnecessary for the legitimate recruitment and hiring purposes for which the Platform is intended.

2.1 Relationship of the Parties

The Parties acknowledge and agree that:

• the Customer determines the purposes and means of processing Candidate Data and other Personal Data submitted to the Platform
• the Customer acts as the Controller, Business, or equivalent legal role under applicable privacy laws
• TalanteEaseAI acts as the Processor, Service Provider, or equivalent legal role when processing Personal Data on behalf of the Customer
• nothing in this POLICY shall be construed as granting TalanteEaseAI ownership of Customer Personal Data

2.2 Customer Responsibilities

The Customer shall be solely responsible for:

• establishing a lawful basis for processing
• obtaining required notices and consents
• responding to Data Subject requests
• determining retention periods
• determining whether Personal Data should be collected, uploaded, or deleted
• ensuring compliance with applicable privacy laws

The Customer warrants that all Personal Data supplied to TalanteEaseAI has been collected and disclosed lawfully.

2.3 Processor Obligations

TalanteEaseAI shall:

• process Personal Data only on documented instructions from the Customer
• process Personal Data solely for purposes of providing the Services
• not sell Personal Data
• not retain, use, or disclose Personal Data except as permitted by this Policy or applicable law
• notify Customer if any instruction violates applicable law, to the extent legally permitted

6.1 Authorization

Customer hereby authorizes TalanteEaseAI to engage subprocessors for the provision of the Services.

6.2 Categories of Subprocessors

Subprocessors may include:

• cloud infrastructure providers
• artificial intelligence providers
• payment processors
• customer support platforms
• email service providers
• authentication providers
• monitoring providers
• analytics providers

6.3 Subprocessor Obligations

TalanteEaseAI shall:

• conduct reasonable due diligence before engaging subprocessors
• enter into written agreements imposing privacy and security obligations substantially similar to those contained in this Policy
• remain responsible for the performance of its subprocessors to the extent required by applicable law

6.4 Changes to Subprocessors

TalanteEaseAI reserves the right to add, replace, or remove subprocessors.

An updated list of subprocessors shall be made available upon request or through the Platform.

9.1 Security Incident

TalanteEaseAI shall notify the Customer without undue delay after becoming aware of a confirmed Security Incident affecting Personal Data processed on behalf of the Customer.

9.2 Notification Content

To the extent reasonably available, such notification shall include:

• nature of the incident
• categories of affected data
• likely consequences
• containment measures taken
• remediation efforts underway

9.3 Cooperation

TalanteEaseAI shall reasonably cooperate with the Customer in investigating and responding to the Security Incident.

9.4 No Admission of Liability

Notification of a Security Incident shall not constitute an admission of fault or liability.

11.1 Compliance Data

Upon reasonable written request, TalanteEaseAI shall make available Data reasonably necessary to demonstrate compliance with this Policy.

Such Data may include:

• security certifications
• audit reports
• security summaries
• compliance documentation

11.2 Customer Audit Requests

Where required by applicable law, Customer may request an audit of TalanteEaseAI's compliance with this Policy.

Any audit shall:

• occur no more than once annually unless required by law or following a Security Incident
• be conducted during normal business hours
• avoid disruption to TalanteEaseAI operations
• protect confidential Data of other customers

11.3 Alternative Compliance Demonstration

TalanteEaseAI may satisfy audit requirements by providing:

• SOC reports
• ISO certifications
• penetration testing summaries
• independent security assessments
• equivalent third-party compliance documentation

11.4 Audit Costs

Customer shall bear its own audit costs and reimburse TalanteEaseAI for reasonable costs incurred in supporting customer-specific audits.