Legal

Privacy Policy

How Reerac collects, processes, and protects data for recruiters and candidates.

This Privacy Policy explains how information is collected and used when individuals and organizations use Reerac AI recruitment services.

Last updated: April 28, 2026

1. Scope and Applicability

This Privacy Policy applies to personal data processed through Reerac AI web applications, candidate portals, recruiter dashboards, and related support channels.

It applies to employers, recruiters, candidates, and other authorized users who interact with the platform.

2. Categories of Data We Collect

We may collect account information, profile details, job application information, interview responses, transcripts, recruiter notes, usage metadata, and support communications.

Where required for service operation, we also process technical and security metadata such as device identifiers, logs, and session diagnostics.

  • Identity and contact data
  • Application and hiring workflow records
  • Interview audio, transcript, and assessment records
  • System and audit logs

3. Purposes of Processing

Personal data is processed to provide recruiting workflows, support candidate evaluation, maintain system security, improve service quality, and comply with legal obligations.

We do not process personal data for unrelated purposes without notice and an appropriate legal basis.

4. Lawful Bases

Depending on context, processing may rely on consent, contractual necessity, legitimate interests, legal obligations, or other lawful bases recognized under applicable data protection law.

Employers using Reerac are responsible for confirming their own lawful basis for candidate-related processing decisions.

5. Data Sharing and Disclosure

Data may be disclosed to authorized employer users, vetted service providers, and relevant authorities when legally required.

Service providers are expected to process data only for service delivery and under contractual controls.

6. International Transfers

Where data is processed across jurisdictions, we apply reasonable safeguards appropriate to transfer context and legal requirements.

Customers may request additional information about transfer controls through official support channels.

7. Retention and Deletion

Data is retained for as long as needed to deliver services, support legitimate business records, and comply with legal requirements.

Retention periods may vary by data type, customer configuration, and legal obligations.

8. Security Measures

We maintain administrative, technical, and organizational safeguards designed to protect confidentiality, integrity, and availability.

No system can guarantee absolute security; however, we continuously improve controls based on risk assessment and operational learning.

9. Data Subject Rights

Subject to applicable law, individuals may request access, correction, deletion, restriction, objection, or portability where relevant.

Requests are handled according to legal obligations, identity verification, and valid operational limitations.

10. Policy Updates

This policy may be updated from time to time to reflect legal, technical, or business changes.

Material changes will be communicated through appropriate channels before taking effect where required.

11. Contact and Complaints

Questions or requests about this policy can be submitted through the contact page.

If unresolved, users may escalate matters to applicable regulatory authorities in their jurisdiction.