Privacy Policy

This Privacy Policy explains how Automated Recruiter LLC ("Automated Recruiter," "we," "us," or "our") collects, uses, stores, shares, and deletes personal information through our recruiting software platform and related website, billing, support, and communications workflows.

Automated Recruiter is a recruiting workflow and decision-support platform used by staffing agencies, internal talent teams, recruiters, and, in some cases, individual direct users. Depending on the context, we may process personal data both on behalf of customer organizations and directly for our own business purposes such as account administration, billing, security, and customer support.

Our Privacy Role

For recruiting and candidate data that customers upload or process through the platform, Automated Recruiter generally acts as a processor or service provider on behalf of the customer organization. For account, billing, support, website, and relationship-management data, and for some direct individual user interactions, Automated Recruiter generally acts as a controller or business. If a separate data processing agreement applies, that agreement governs to the extent of any conflict for processor obligations.

Information We Collect

We may collect the following categories of information.

Account and Organization Information

• Name
• Company or agency name
• Business email address
• User role and account settings
• Authentication and provisioning information
• Support and contact history

Billing and Commercial Information

• Trial status and trial usage
• Subscription status and plan selection
• Billing account identifiers
• Customer or company name, including legal entity name where provided
• Billing email address
• Billing country, state or region where relevant, and postal code
• Invoice and payment status
• Assessment usage, billing period, and overage metadata
• Customer portal and billing recovery activity
• Tax-related information such as tax IDs, tax calculation metadata, exemption status, and related support records where provided or generated in billing workflows

Payment card information is typically collected and processed by our payment processor, such as Stripe, rather than stored by Automated Recruiter directly.

Recruiting Workflow Data

• Job descriptions
• Recruiter notes and intake information
• Evaluation rubrics
• Workflow configuration and filtering rules
• Candidate-review outputs, summaries, and scores

Candidate Information

Candidate data contained in resumes, applications, profiles, or related records may include:

• Name
• Email address
• Phone number
• Location
• Employment history
• Education
• Licenses, certifications, and skills
• Work authorization information
• Interview notes, evaluation results, and related recruiting metadata
• Other information voluntarily included in resumes, applications, or related recruiting communications

Operational, Security, and Diagnostic Data

• Application timestamps and routing metadata
• Job alias email routing information
• Resume parsing and scoring status
• Device, browser, IP, and log data
• Audit events, error logs, and support diagnostics
• Cookie and consent preferences where applicable

How We Use Information

We may use personal information to:

• Provide, host, maintain, and secure the platform
• Process resumes, applications, and recruiting workflow data
• Generate candidate evaluations, summaries, and recruiter notifications
• Administer accounts, subscriptions, billing periods, invoices, and payment recovery
• Calculate included usage, overages, and billing reconciliation records
• Determine billing jurisdiction, calculate applicable taxes, and maintain tax, refund, credit, and invoice records
• Respond to support, legal, privacy, and commercial inquiries
• Detect fraud, abuse, misuse, security incidents, or policy violations
• Improve platform quality, observability, and reliability
• Comply with legal, tax, accounting, regulatory, and contractual obligations

Platform Improvement and Future Capabilities

We may use data processed through the platform to improve existing features and to develop new capabilities, including systems designed to support candidate rediscovery, matching, ranking, and future talent network functionality, subject to applicable law, contractual obligations, and required notice or consent where applicable.

Legal Bases

Where required by applicable law, we process personal information based on one or more of the following: performance of a contract, legitimate interests, compliance with legal obligations, your consent, or another applicable lawful basis. Where we act as a processor or service provider, we process data on behalf of the relevant customer under their instructions and our contractual obligations.

How We Share Information

We may share personal information with:

• Service providers and subprocessors that help us operate the platform, such as hosting, identity, analytics, monitoring, AI, email, and payment-processing vendors
• Payment processors and related tax-calculation services, including Stripe and Stripe Tax or similar providers, to process billing, invoices, renewals, payment recovery, tax determination, refunds, credits, and related commercial workflows
• Customer organizations and authorized users acting within their recruiting workflows
• Professional advisors, auditors, insurers, lenders, or acquirers where reasonably necessary
• Government authorities, courts, regulators, or law enforcement where required by law or to protect rights, safety, and security

We do not sell personal information for money. We do not share customer recruiting data with unrelated third parties for their independent advertising purposes.

Data Processing and Subprocessors

We may engage subprocessors and service providers to support hosting, infrastructure, AI processing, authentication, billing, communications, and security operations. We implement contractual and organizational safeguards designed to ensure such providers process data in accordance with applicable legal requirements.

Where Data Is Stored

Platform data is hosted in Microsoft Azure, with primary infrastructure in East US 2. Certain data may also be processed through third-party service providers that support authentication, AI workflows, billing, communications, customer support, or security operations.

Where required, we implement contractual, organizational, and technical safeguards designed to protect personal data during international transfers.

Security Measures

Automated Recruiter implements administrative, technical, and organizational safeguards designed to protect data, including:

• Encryption in transit
• Encryption at rest where supported
• Managed Identity and access controls
• Role-based access control and least-privilege practices
• Infrastructure monitoring, structured logging, and audit events
• Restricted production access
• Operational safeguards around billing and entitlement changes

No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

Data Retention

We retain data based on operational needs, customer instructions, legal obligations, financial recordkeeping requirements, and legitimate business needs such as fraud prevention, billing reconciliation, dispute resolution, and security investigations.

Raw Inbound Email Artifacts

Examples include raw email messages and ingestion artifacts.

Typical retention period: 30 days

Use of Candidate Data

Retention of candidate data does not grant unrestricted rights to use such data for unrelated purposes. Any use of candidate data beyond providing the service to the relevant customer will be subject to applicable law, customer agreements, and any required notice or consent.

Where permitted by law and consistent with applicable agreements, Automated Recruiter may use candidate-related data to support platform functionality, system improvement, and future product capabilities, including candidate matching and rediscovery systems.

Resumes, candidate attachments, and candidate records may be retained while the associated customer account remains active or while the candidate profile remains active within platform workflows. Working review threshold: up to 7 years after last meaningful candidate activity, unless earlier deletion is required by customer instruction, applicable law, a validated rights request, or a different written agreement.

Billing, Subscription, and Financial Records

Billing account records, invoices, payment status, tax information, tax determinations, refund and credit records, overage records, entitlement history, and related commercial records may be retained after cancellation or account closure as reasonably necessary for accounting, tax, audit, dispute resolution, collections, fraud prevention, and legal compliance.

Typical retention period: at least 7 years where reasonably necessary for financial, tax, audit, dispute, fraud, or enforcement purposes

Logs and Diagnostics

System logs, support diagnostics, and infrastructure records are generally retained for a limited period consistent with security, observability, and operational needs.

Typical retention period: about 30 days, unless longer preservation is reasonably necessary for incident investigation, abuse review, legal hold, or related operational needs.

Enterprise and Contract-Specific Retention

Enterprise or custom-contract customers may receive different retention or deletion terms where expressly agreed in writing.

Data Deletion and Access Requests

Requests relating to access, correction, deletion, restriction, or other data rights may be submitted through Contact us. On the Contact form, choose Data rights request (access / deletion / correction) so we can route and respond appropriately. We may require identity verification before responding.

Where we process data on behalf of a customer organization, requests relating to candidate or recruiting data may need to be directed to that organization first. We may retain certain records despite a deletion request where necessary for legal compliance, billing reconciliation, fraud prevention, dispute resolution, or enforcement of agreements.

Children's Privacy

The platform is intended for professional recruiting use and is not directed to children under 13. We do not knowingly collect personal information from children in violation of applicable law.

Policy Updates

We may update this Privacy Policy periodically. Updated versions become effective when posted or as otherwise stated. Continued use of the platform after an updated effective date is subject to the revised policy.

Privacy Contact

For privacy, billing-data, or data-rights questions, contact us.