Smart Sifty is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our services.

1Information We Collect

We collect information that you directly provide to us when using our services, including:

Personal identifiers such as name, email address, and contact information
Professional information from CVs and resumes that you upload or submit
Information about job descriptions and hiring criteria
Account credentials and user preferences
Usage data and analytics related to our service

2How We Use Your Information

We use the information we collect for the following purposes:

Providing and maintaining our CV analysis and recruitment services
Processing and analyzing CVs against job descriptions
Improving and personalizing our services
Communicating with you about our services, updates, and support
Ensuring the security and integrity of our platform
Complying with legal obligations

3Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

Contractual Necessity: Processing necessary for the performance of our contract with you
Legitimate Interests: Processing necessary for our legitimate business interests, provided these interests don't override your rights
Consent: Processing based on your explicit consent, which you can withdraw at any time
Legal Obligation: Processing necessary to comply with our legal obligations

4Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes described in this Privacy Policy, or as required by law. CV data is retained for a maximum period of 12 months after the recruitment process ends, unless you request earlier deletion or extended retention.

5Your Rights Under GDPR

Under the General Data Protection Regulation (GDPR), you have the following rights:

Right to Access: You can request a copy of your personal data.
Right to Rectification: You can request correction of inaccurate personal data.
Right to Erasure: You can request deletion of your personal data in certain circumstances.
Right to Restriction of Processing: You can request restriction of processing of your personal data.
Right to Data Portability: You can request a copy of your data in a structured, commonly used format.
Right to Object: You can object to the processing of your personal data in certain circumstances.
Rights Related to Automated Decision Making: You can request human intervention in decisions based solely on automated processing.

To exercise these rights, please contact us at privacy@smartsifty.com.

6Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, regular security assessments, and staff training. We maintain ISO 27001 certification for information security management.

7International Data Transfers

Your data is primarily stored and processed in the United Kingdom using Amazon Web Services (AWS) UK data centres located in London. When we transfer data internationally, we ensure appropriate safeguards are in place through mechanisms such as Standard Contractual Clauses, adequacy decisions, or other legally acceptable mechanisms.

8Use of Cookies and Similar Technologies

We use cookies and similar technologies to enhance your experience, analyze usage patterns, and deliver personalized content. You can control cookie preferences through your browser settings.

We use Google Analytics 4 to collect anonymous usage data about how visitors interact with our website. This includes page views, session duration, and general geographic location. Google Analytics uses cookies to distinguish unique users. You can opt out of Google Analytics tracking by installing the Google Analytics Opt-out Browser Add-on.

For detailed information about the cookies we use, please refer to our Cookie Policy.

9Third-Party Services

Our service integrates with third-party technologies and services. These third parties may have access to your information only to perform tasks on our behalf and are obligated not to disclose or use it for any other purpose. All third-party processors are contractually bound to process data in compliance with GDPR.

10Children's Privacy

Our services are not intended for individuals under 16 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

11Changes to This Privacy Policy

We may update this Privacy Policy periodically. We will notify you of any material changes by posting the updated policy on our website and, where appropriate, sending you a notification. We encourage you to review this Privacy Policy periodically.

12Data Protection Officer and Contact Information

For questions or concerns about this Privacy Policy or our data practices, please contact our Data Protection Officer at:

Email: privacy@smartsifty.com

You have the right to lodge a complaint with your local data protection authority if you have concerns about our data practices.

13Governing Law

This Privacy Policy is governed by the laws of the United Kingdom and the European Union's General Data Protection Regulation.