At a Glance
This Policy explains how [TalentBridge / Your Platform Name] collects, uses, stores, and shares your personal data. We are committed to transparency, user control, and compliance with applicable data protection laws including GDPR, CCPA, and PDPA. We never sell your personal data.
Questions? Contact us at [privacy@https://24jobexpert.com/
▌ 1. WHO WE ARE
| Platform | SMD |
| Operator | Malik Jawad |
| Registration | 22233435353 |
| Jurisdiction | NY America |
| Website | [www.yourplatform.com] |
| Data Protection Officer | [dpo@yourplatform.com] |
[TalentBridge / Your Platform Name] is a technology-driven employment marketplace that connects talent with opportunity. We operate as both a Data Controller (for data you submit directly to us) and, in some cases, a Data Processor (when handling data on behalf of employer clients).
▌ 2. SCOPE OF THIS POLICY
This Policy applies to all individuals who interact with our Platform, including:
- Job seekers who register, browse, or apply for positions
- Employers and recruiters who create accounts and post vacancies
- Visitors who browse the Platform without creating an account
- Anyone who contacts us via email, chat, or social media
It does not apply to third-party websites linked from our Platform, or to services offered by employers directly. Those parties maintain their own privacy practices.
▌ 3. PERSONAL DATA WE COLLECT
3.1 Talent / Job Seeker Data
We collect the following categories of data from job seekers:
- Identity: Full name, date of birth, nationality, gender (optional)
- Contact: Email address, phone number, mailing address
- Professional: CV/résumé, work experience, education history, skills, certifications, languages
- Preferences: Job type, industry, salary expectations, remote/hybrid preferences, location
- Media: Profile photo, portfolio files, video introductions (if uploaded)
- Assessments: Responses to skills tests, personality questionnaires, or psychometric assessments
- Sensitive Data: Disability status, right-to-work documents — only with explicit consent and where required by law
3.2 Employer / Recruiter Data
- Company name, registration number, and industry
- Authorised representative name, job title, and contact details
- Billing and payment information (processed by PCI-DSS compliant third parties)
- Job descriptions, hiring criteria, and applicant tracking notes
3.3 Automatically Collected Data
- IP address, browser type, operating system, and device identifiers
- Pages visited, time on page, clicks, and scroll depth
- Search queries entered within the Platform
- Session identifiers, referral sources, and campaign parameters
- Geolocation data (city-level, derived from IP address)
3.4 Data from Third Parties
- Professional profile data imported from LinkedIn or similar networks (with your authorisation)
- Identity verification data from KYC/AML service providers
- Fraud signals from security analytics partners
- Enriched company data from commercial business intelligence providers (for employer accounts)
▌ 4. HOW AND WHY WE USE YOUR DATA
| Purpose | Legal Basis |
| Creating and managing user accounts | Contract performance |
| Matching candidates with relevant vacancies | Contract / Legitimate interest |
| Enabling job applications and recruiter communications | Contract performance |
| Running AI-powered job recommendations | Legitimate interest (with opt-out) |
| Processing employer payments and invoices | Contract / Legal obligation |
| Sending job alerts and platform notifications | Contract / Consent |
| Fraud detection and platform security | Legitimate interest / Legal obligation |
| Analytics to improve the Platform | Legitimate interest |
| Personalising content and search results | Consent (cookie-based) |
| Complying with legal and regulatory obligations | Legal obligation |
| Sending marketing communications | Consent (opt-in only) |
▌ 5. ARTIFICIAL INTELLIGENCE & AUTOMATED DECISION-MAKING
[TalentBridge / Your Platform Name] uses AI and machine learning to power features including job recommendations, candidate ranking, skill matching, and salary benchmarking. We are transparent about how these systems work:
- AI recommendations are based on your profile data, search behaviour, and stated preferences.
- Employers may receive AI-generated candidate rankings — these are advisory only and do not substitute human review.
- No purely automated decision will result in a hiring outcome without human involvement.
- You have the right to request human review of any automated assessment. Contact us at [privacy@yourplatform.com] to exercise this right.
- You may opt out of AI-driven features at any time via your account settings.
▌ 6. SHARING YOUR PERSONAL DATA
We do not sell your personal data. We share it only in the following circumstances:
6.1 With Employers & Recruiters
When you apply for a role or make your profile publicly visible, employers can view the information you choose to display. You control what appears on your public profile.
6.2 With Service Providers (Data Processors)
We engage carefully vetted third-party processors, including:
- Cloud infrastructure providers (data hosting and storage)
- Payment processors (billing and subscription management)
- Email delivery and SMS notification services
- Analytics and A/B testing platforms
- Background screening providers (only with your separate, explicit consent)
- Customer support and live-chat tools
All processors are bound by Data Processing Agreements and may use your data only for the specified purpose.
6.3 With Authorities & Legal Counterparties
We disclose data when required by a valid court order, subpoena, regulatory direction, or to protect the rights and safety of our users and the public.
6.4 Corporate Transactions
In the event of a merger, acquisition, restructuring, or sale of assets, user data may be transferred. We will provide at least 30 days’ prior notice and an option to delete your account.
▌ 7. INTERNATIONAL DATA TRANSFERS
Your data may be processed in countries outside your home jurisdiction. For transfers outside the EEA, UK, or equivalent adequacy territories, we rely on:
- European Commission Standard Contractual Clauses (SCCs)
- UK International Data Transfer Agreements (IDTAs)
- Adequacy decisions where applicable
- Binding Corporate Rules where relevant
You may request a copy of the transfer safeguards we use by contacting our DPO.
▌ 8. DATA RETENTION
| Data Category | Retention Period |
| Active job seeker profiles | For the life of the account + 2 years |
| Job applications (submitted) | 3 years from application date |
| Employer accounts and postings | 5 years from account closure |
| Financial and billing records | 7 years (statutory accounting requirement) |
| Marketing consent logs | Consent period + 1 year |
| Security and access logs | 12 months rolling |
| Deleted account residual data | 90 days (backup purge cycle) |
When data is no longer needed, it is securely deleted or anonymised. Anonymised, aggregated data may be retained indefinitely for research and analytics purposes.
▌ 9. COOKIES & TRACKING TECHNOLOGIES
We use cookies, web beacons, and similar technologies. You can manage your preferences via our cookie consent banner or browser settings.
| Cookie Type | Purpose |
| Strictly Necessary | Authentication, security, and session management — cannot be disabled |
| Functional | Remembering your preferences, language, and region settings |
| Performance / Analytics | Measuring site usage and diagnosing technical issues |
| Targeting / Advertising | Serving relevant ads and measuring campaign effectiveness (consent required) |
Withdrawing cookie consent will not affect the lawfulness of processing already carried out. To opt out of analytics, visit your account Settings → Privacy Controls.
▌ 10. SECURITY MEASURES
We apply a defence-in-depth security strategy, including:
- AES-256 encryption for data at rest; TLS 1.3 for data in transit
- Role-based access control (RBAC) with multi-factor authentication for staff
- Quarterly penetration testing and continuous vulnerability scanning
- ISO 27001-aligned information security management practices
- A 72-hour breach notification procedure in line with GDPR Article 33
Despite these measures, no digital system is entirely risk-free. You are responsible for keeping your account credentials confidential.
▌ 11. YOUR DATA RIGHTS
Depending on your location, you hold some or all of the following rights. To exercise any right, contact us at [privacy@yourplatform.com]. We will respond within 30 days (extendable by a further 60 days for complex requests).
| Your Right | What It Means |
| Access | Obtain a copy of the personal data we hold about you. |
| Rectification | Correct inaccurate or incomplete data without undue delay. |
| Erasure | Request deletion of your data where we have no overriding legal basis to retain it. |
| Restriction | Ask us to pause processing while a dispute or complaint is resolved. |
| Portability | Receive your data in a structured, machine-readable format (JSON or CSV). |
| Objection | Object to processing based on legitimate interests or for direct marketing (always granted). |
| Withdraw Consent | Withdraw consent at any time without affecting prior lawful processing. |
| Human Review | Request human review of any automated or AI-driven decision affecting you. |
| CCPA Rights | California residents may also request disclosure of data sold/shared and opt out of sale. |
If you are not satisfied with our response, you may lodge a complaint with your local supervisory authority (e.g., ICO in the UK, CNIL in France, or your national DPA).
▌ 12. CHILDREN & MINORS
[TalentBridge / Your Platform Name] is intended solely for users aged 16 and above (or the minimum digital consent age in your jurisdiction, whichever is higher). We do not knowingly collect data from minors. If you believe a minor has registered on our Platform, contact us immediately at [privacy@yourplatform.com] and we will delete the account.
▌ 13. THIRD-PARTY INTEGRATIONS
Our Platform integrates with third-party tools and APIs including applicant tracking systems (ATS), HR software, video interviewing platforms, and job aggregators. When you authorise these integrations, your data may be shared with and governed by those third parties’ privacy policies. We recommend reviewing those policies before connecting any third-party service.
▌ 14. CHANGES TO THIS POLICY
We may revise this Policy as our practices evolve or as required by law. For material changes, we will:
- Post the updated Policy with a new effective date
- Notify registered users by email at least 14 days before the change takes effect
- Where required, seek fresh consent before processing data under new terms
The version history of this document is maintained and available on request.
▌ 15. CONTACT US & DATA PROTECTION OFFICER
For all privacy-related queries, data subject requests, or complaints:
| Data Protection Officer | [dpo@yourplatform.com] |
| General Privacy Enquiries | [privacy@yourplatform.com] |
| Postal Address | City, State: New York, NY ZIP Code: 10118 |
| Response Time | Within 30 days of receipt |