Privacy Policy

Effective Date: January 1, 2025

Last Updated: January 1, 2025

1. Information We Collect

We collect comprehensive data to provide our video interview fraud detection services. This includes:

1.1 Personal Information

• Full name, email address, phone number, and contact information
• Professional credentials, employment history, and educational background
• Government-issued identification documents and verification data
• Biometric data including facial recognition data, voice patterns, and behavioral characteristics
• Device fingerprinting data including hardware specifications, software configurations, and unique identifiers

1.2 Video and Audio Data

• Complete video recordings of interview sessions
• Audio recordings and transcriptions of all conversations
• Real-time video analysis data including facial expressions, eye movements, and body language
• Background analysis and environmental data captured during interviews
• Screen sharing data and application usage during interviews

1.3 Network and Technical Data

• IP addresses, geolocation data, and network routing information
• VPN detection data, proxy server information, and network anonymization attempts
• Device location data including GPS coordinates when available
• Network connection quality, latency, and bandwidth information
• Browser and application telemetry data

1.4 Behavioral and Analytics Data

• Mouse movements, keyboard patterns, and interaction timing
• Application usage patterns and software detection
• Response time analysis and behavioral consistency metrics
• Pattern recognition data for fraud detection algorithms
• Machine learning training data derived from user interactions

2. How We Use Your Information

We use the collected information for the following purposes under GDPR Article 6(1):

• Contract Performance (Art. 6(1)(b)): Providing video interview fraud detection services as agreed
• Legitimate Interests (Art. 6(1)(f)): Real-time analysis of video interviews to identify deepfakes, AI coaching, and identity fraud
• Legitimate Interests: Confirming candidate identity and preventing bait-and-switch scenarios
• Legitimate Interests: Detecting VPNs, proxies, and suspicious network connections
• Legitimate Interests: Enhancing our detection algorithms and platform capabilities
• Legal Obligation (Art. 6(1)(c)): Meeting legal and regulatory requirements
• Legitimate Interests: Protecting against unauthorized access and maintaining platform integrity

You have the right to object to processing based on legitimate interests. However, such objections may affect our ability to provide fraud detection services.

3. Data Sharing and Disclosure

We may share your information with:

• Service Providers: Third-party vendors who assist in providing our services
• Legal Authorities: When required by law or to protect our rights and safety
• Business Partners: With your consent for specific business purposes
• Research Partners: Anonymized data for academic and industry research

4. Data Security

We implement comprehensive security measures including:

• End-to-end encryption for all data transmission
• Secure data centers with physical and digital security controls
• Regular security audits and penetration testing
• Access controls and authentication mechanisms
• Data backup and disaster recovery procedures

5. Data Retention

We retain your information for as long as necessary to:

• Provide our services and maintain platform functionality
• Comply with legal and regulatory requirements
• Improve our fraud detection algorithms
• Resolve disputes and enforce our agreements

Data may be retained for up to 7 years for compliance and research purposes.

6. Your Rights (Florida Residents & GDPR)

Under Florida law and GDPR, you have the right to:

• Access and review your personal information
• Request correction of inaccurate data
• Request deletion of your personal information (subject to legal requirements)
• Opt-out of certain data processing activities
• Data portability - receive your data in a structured, machine-readable format
• Restrict processing of your personal data
• Object to processing based on legitimate interests
• Withdraw consent at any time (where processing is based on consent)
• File a complaint with relevant authorities

7. Cookies and Tracking Technologies

We use cookies, web beacons, and similar technologies to:

• Maintain session information and user preferences
• Analyze platform usage and performance
• Detect and prevent fraud and security threats
• Provide personalized user experiences

8. International Data Transfers

Your information may be transferred to and processed in the United States and other countries. By using our services, you explicitly consent to the transfer of your data to the United States for processing.

For GDPR compliance, we rely on:

• Explicit Consent: Your agreement to this Privacy Policy constitutes explicit consent for data transfer to the United States
• Adequacy Decisions: Where applicable, we ensure appropriate safeguards for international transfers
• Standard Contractual Clauses: We implement appropriate contractual safeguards for data transfers
• Legitimate Business Interests: Processing is necessary for the performance of our services

9. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children under 18.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on our website and updating the "Last Updated" date.

11. Contact Information