Privacy and Security Policy
At HiringThing, we have a few fundamental principles:
- We don’t ask you for personal information unless we truly need it. (We can’t stand services that ask you for things like your gender or income level for no apparent reason.)
- We don’t share your personal information with anyone except to comply with the law, develop our products, provide you with services, or protect our rights.
- We don’t store personal information on our servers unless required for the ongoing operation of one of our services.
We do not have any direct relationship with the individuals whose personal data we process. If you are a candidate or subscriber of one of our customers and you no longer wish to be contacted by that customer, please contact the customer directly.
Personal Data Protection Regulations
For the purposes of the General Data Protection Regulation (“GDPR”):
- We are the Data Controller with respect to the personal data of users of the Website and Services, business contacts and prospects, and candidates applying to work at our company.
- We are the Data Processor with respect to the personal data of candidates applying to an open position with one of our customers or candidates contacted by one of our customers regarding their open position.
Information We Collect from You
We may collect some or all of the following types of information from and about visitors to our Website:
- Information that is about you but does not personally identify you, including, but not limited to, information about your web browser, language preference, referring site, and the date and time of each visitor request.
- Information that is about you and can potentially be used to identify you, including, but not limited to, your internet protocol (IP) address.
- Aggregated statistics about the behavior of visitors.
We may collect some or all of the following types of information from and about users of our Website and Services:
- Information that you have provided via completion of an online form, such as a registration form for an account.
- Financial information, such as a credit card number and billing address, when users opt to purchase premium services.
Information We Collect from Other Sources
We may collect some or all of the following types of information from other sources:
- Information that is publicly available through third parties.
- Personally identifying information that you provide to an authorized third party whose services are integrated with ours. We will use this information only to provide you with the integrated services. For example, your name and email address may be provided by an integrated third party such as an HR technology provider in order to authorize your access to our Services through the third-party website.
- Name, email address and phone number of users added by other users on an account in order to grant access to the Services.
How We Use Your Information
With respect to our Website, we may use the information we collect in the following ways:
- To better understand how visitors interact with the content on our Website so that we may optimize that content and its location to provide the best visitor experience.
- To better understand what technology visitors are using to interact with our Website so that we may optimize our Website for you.
With respect to the Service, we may use the information we collect in the following ways:
- Provide you with access to features that are part of the Service.
- We may access your account in order to provide you with a resolution to a support inquiry. In this case, an employee of Applicant Tracking Software would log into your account as you or as the account owner and would view the data in your account from that role. We reserve the right to access your account without notice when we deem it necessary in order to investigate issues, comply with any applicable law, or support the Service.
- Verify your identity in order to provide you with support for the Service.
- Verify the information you provided upon registration about your business or organization.
- Provide you with notices that are relevant to your account, including, but not limited to, new feature offerings, account subscription or trial period expiration, or changes to our policies or terms of service.
- In any other ways described to you when the information is collected in order to provide you with the Service.
Disclosure of Your Information
We may disclose your personal information to any of our subsidiaries, affiliates or their successors or assigns, contractors, service providers, or other third parties that we use to support our business or that we partner with in order to provide you with additional features or services. Any entity with whom your personal information is disclosed is authorized to use that data solely as needed in order provide you with services. We do not sell your personal information otherwise than as described in this policy to provide you with services.
We may also disclose your personal information to comply with any applicable law, regulation or government request or to protect our rights or the rights of our customers, users, partners, or others. In the event that we sell all, or substantially all, of our assets to a third party, your personal data held by us will be transferred as part of the sale and we will endeavor to provide you with notice of such event.
How We Store and Protect Your Personal Data
HiringThing always transmits and stores personal information securely. This prevents potential hackers from “tapping” a data conversation. Your login credentials are encrypted with strong encryption using the Advanced Encryption Standard. The data security standards we have in place include auditing, logging, backups, and safe-guarding data. Our servers are housed in datacenters that are ISO27001 certified, the highest and most current standard for managing systems and data securely. All datacenter facilities are protected by professional security staff utilizing video surveillance, intrusion detection systems and other electronic means. Authorized staff must pass two-factor authentication a minimum of two times to access data center floors.
We limit access to your personal data only to those who have a genuine business need to have it. Those processing your personal data will do so only in an authorized manner. All those with access to, or processing responsibilities for, your personal data are subject to strict confidentiality measures. We have procedures in place to swiftly and appropriately handle any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.
No method of transmission over the Internet, or method of electronic storage, is 100% secure, however. Therefore, we cannot guarantee its absolute security. If you have any questions about security on our Website, you can contact us using the contact details provided below.
Keeping Your Personal Data Updated
If your personal information changes, or if you no longer desire our Service, you may correct, update, amend, delete/remove, or deactivate it by contacting us using the contact details provided below. We will respond to your request to access within 30 days.
How Long We Store Your Personal Data
We will retain your information for as long as necessary to meet our Service commitments, comply with our legal obligations, resolve disputes, and enforce our agreements.
We will delete your personal data upon deletion of that data by you or by another user on the account connected with storage of that data or upon receipt of a written request for deletion of your personal data.
Third Party Sites
Social Media Widgets
Blog / Forum
Our Website offers publicly accessible blogs or community forums. You should be aware that any information you provide in these areas may be read, collected, and used by others who access them. To request removal of your personal information from our blog or community forum, contact us using the contact details provided below. In some cases, we may not be able to remove your personal information, in which case we will let you know if we are unable to do so and why.
If you choose to use our referral service to tell a friend, colleague, or other individual about our site, we will ask you for the referree’s name and email address. We will automatically send the referree a one-time email inviting them to visit the site. We store this information for the sole purpose of sending this one-time email and tracking the success of our referral program. The referree may contact us using the contact details provided below to request that we remove this information from our database.
Children Under the Age of 13
Our Website and Services are not intended for children under the age of 13 years of age. If you are under the age of 13, do not use or provide any information through our Website or Services. If we become aware that we have collected or received the information of a person under the age of 13, we will delete that information. If you have reason to believe we have collected or received the information of a person under the age of 13, please contact us using the contact details provided below.
Residents of the European Union have the following rights under the General Data Protection Regulations (GDPR) with respect to their own information:
- The right to be informed
- The right of access
- The right to correct any inaccurate information
- The right to erasure
- The right to restrict processing
- The right to data portability
- The right to object
- Rights in relation to automated decision making and profiling
How to Complain
GDPR also provides you with the right to lodge a complaint with a supervisory authority. You may exercise that right by contacting the relevant supervisory authority in the state where you work, normally live or where any alleged infringement of data protection laws took place.
PO Box 697
Bartonsville, PA 18321