Privacy Policy

Last updated: March 26, 2026

HiredSignal ("we," "us," or "our") operates the HiredSignal job discovery platform available at hiredsignal.com (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By accessing or using the Service, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree, please discontinue use of the Service.

1. Information We Collect

1.1 Information You Provide Directly

• Account information: When you sign in using Google OAuth, we receive your name, email address, and profile picture from your Google account.
• Profile data: Information you add to your HiredSignal profile, including job preferences, skills, desired locations, salary expectations, and resume content.
• Saved jobs and applications: Jobs you save, apply to, or interact with on the platform.
• Communications: Messages you send to us via email at contact@hiredsignal.com or through in-app contact forms.

1.2 Information Collected Automatically

• Usage data: Pages visited, features used, search queries, job listings viewed, clicks, and interaction patterns.
• Search history: Job search queries, filters applied, and search frequency to improve recommendations.
• Device and browser information: IP address, browser type and version, operating system, device type, screen resolution, and language preferences.
• Cookies and similar technologies: See our Cookie Policy for details on cookies we use.
• Log data: Server logs including access times, pages viewed, referring URLs, and system activity.

1.3 Information from Third Parties

• Google OAuth: When you authenticate with Google, we receive basic profile information as authorized by your Google account permissions.
• Analytics providers: Aggregated and anonymized data from Google Analytics (GA4) to understand usage patterns.

2. How We Use Your Information

We use the information we collect for the following purposes:

• Provide and maintain the Service: Deliver job listings, personalized recommendations, saved job functionality, and search features.
• Personalize your experience: Tailor job recommendations and search results based on your profile, preferences, and search history.
• Improve the Service: Analyze usage patterns to enhance features, fix bugs, and develop new functionality.
• Communicate with you: Send service-related notifications, respond to inquiries, and provide customer support.
• Ensure security: Detect, prevent, and address technical issues, fraud, and unauthorized access.
• Analytics: Generate aggregated, anonymized statistics about Service usage via Google Analytics (GA4) and first-party analytics.
• Legal compliance: Comply with applicable laws, regulations, and legal processes.

3. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, we process your personal data under the following legal bases:

• Consent: Where you have given explicit consent, such as for analytics cookies and marketing communications. You may withdraw consent at any time.
• Contract performance: Processing necessary to provide the Service you have requested, including account management and job search functionality.
• Legitimate interests: Processing necessary for our legitimate business interests, including improving the Service, ensuring security, and preventing fraud, where these interests are not overridden by your rights.
• Legal obligation: Processing necessary to comply with applicable laws and regulations.

4. Cookies and Tracking Technologies

We use the following cookies:

• hs_token: A JSON Web Token (JWT) stored as an HTTP-only cookie for session authentication. This is essential for the Service to function.
• hs_cookie_consent: Stores your cookie consent preferences. This is essential for respecting your choices.
• Google Analytics cookies (_ga, _ga_*): Used to distinguish users and throttle request rates for analytics. These are only set if you consent to analytics cookies.

For full details, see our Cookie Policy.

5. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

• Service providers: With trusted third-party companies that perform services on our behalf, such as hosting (infrastructure providers), analytics (Google Analytics), and authentication (Google OAuth). These providers are contractually obligated to use your data only as directed by us.
• Legal requirements: When required by law, regulation, legal process, or governmental request.
• Protection of rights: To enforce our Terms of Service, protect our rights, privacy, safety, or property, and that of our users or the public.
• Business transfers: In connection with a merger, acquisition, reorganization, or sale of assets, your data may be transferred as part of that transaction. We will notify you of any such change.
• With your consent: For any purpose not listed above, we will obtain your explicit consent before sharing your information.

6. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. Specifically:

• Account data: Retained while your account is active and for 30 days after account deletion to allow for recovery.
• Search history: Retained for 12 months from the date of the search, then automatically deleted.
• Analytics data: Aggregated analytics data is retained for up to 26 months. Individual-level analytics data is retained for 14 months.
• Server logs: Retained for 90 days for security and debugging purposes.

After the applicable retention period, data is securely deleted or anonymized.

7. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including:

• Encryption of data in transit using TLS 1.3
• Encryption of sensitive data at rest
• HTTP-only, secure, SameSite cookies for authentication tokens
• Regular security audits and vulnerability assessments
• Access controls limiting employee access to personal data
• Secure infrastructure hosted on dedicated servers

While we strive to protect your information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

8. Your Rights Under GDPR

If you are located in the EEA, UK, or Switzerland, you have the following rights under the General Data Protection Regulation:

• Right of access: Request a copy of the personal data we hold about you.
• Right to rectification: Request correction of inaccurate or incomplete personal data.
• Right to erasure: Request deletion of your personal data, subject to certain legal exceptions.
• Right to restriction: Request that we restrict processing of your personal data in certain circumstances.
• Right to data portability: Receive your personal data in a structured, commonly used, machine-readable format.
• Right to object: Object to processing of your personal data based on legitimate interests or for direct marketing.
• Right to withdraw consent: Withdraw consent at any time where processing is based on consent, without affecting the lawfulness of prior processing.
• Right to lodge a complaint: File a complaint with your local data protection authority.

To exercise any of these rights, contact us at contact@hiredsignal.com. We will respond within 30 days.

9. Your Rights Under CCPA

If you are a California resident, you have the following rights under the California Consumer Privacy Act:

• Right to know: Request disclosure of the categories and specific pieces of personal information we have collected about you, the categories of sources, the business purpose for collecting it, and the categories of third parties with whom we share it.
• Right to delete: Request deletion of your personal information, subject to certain exceptions.
• Right to opt out of sale: We do not sell personal information. If this changes, we will provide a "Do Not Sell My Personal Information" link.
• Right to non-discrimination: We will not discriminate against you for exercising your CCPA rights.

To exercise these rights, contact us at contact@hiredsignal.com. We will verify your identity and respond within 45 days.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for such transfers, including Standard Contractual Clauses approved by the European Commission where applicable.

11. Children's Privacy

The Service is not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete that information promptly. If you believe we have collected information from a child under 16, please contact us at contact@hiredsignal.com.

12. Third-Party Links

The Service may contain links to third-party websites, including employer career pages and job application portals. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party site you visit.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised "Last updated" date. For significant changes, we may also notify you via email or an in-app notification. Your continued use of the Service after changes are posted constitutes acceptance of the updated policy.

14. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

• Email: contact@hiredsignal.com
• Website: hiredsignal.com

For GDPR-related inquiries, you may also contact your local data protection authority.