Privacy Policy

1. Introduction

GunaEdge Technologies Pvt. Ltd. (“we,” “our,” or “us”) operates TalentSeva, an AI-powered recruitment platform that processes resumes and conducts virtual interviews. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our services in compliance with Indian data protection laws, including the Digital Personal Data Protection Act, 2023.

By using our platform, you consent to the collection and use of information in accordance with this policy. If you do not agree with this policy, please do not use our services.

2. Information We Collect

2.1 Personal Information You Provide

• Account Information: Name, email address, mobile number, company details, designation
• Resume Data: Educational qualifications, work experience, skills, contact information, date of birth, gender, and other details contained in uploaded resumes
• Interview Data: Video recordings, audio recordings, responses to interview questions, behavioral analysis data
• Payment Information: Billing address, payment method details, PAN details if applicable (processed securely through Razorpay)
• Identity Verification: Aadhaar number, PAN card details, or other government-issued ID numbers when required for verification
• Communications: Messages, feedback, and support requests

2.2 Automatically Collected Information

• Technical Data: IP address, browser type, device information, operating system
• Usage Data: Pages visited, features used, time spent on platform, click patterns
• Performance Data: Application logs, error reports, system performance metrics
• AI Analysis Data: Scoring algorithm results, interview assessment metrics, candidate rankings
• Analytics Data: Website usage statistics, user behavior patterns, and performance metrics

2.3 Third-Party Information

• Information from AI service providers and other integrated platforms
• Data validation services for identity verification
• Analytics and performance monitoring tools

3. How We Use Your Information

3.1 Core Platform Services

• Resume Processing: Parsing, analyzing, and scoring uploaded resumes using AI algorithms
• Interview Conduct: Facilitating virtual interviews, recording sessions, and generating AI-powered assessments
• Candidate Evaluation: Providing scoring, rankings, and recommendations to employers
• Account Management: Creating and maintaining user accounts, authentication, and access control

3.2 Business Operations

• Payment Processing: Processing subscription fees and transaction charges through Razorpay
• Customer Support: Responding to inquiries, troubleshooting, and providing assistance
• Platform Improvement: Analyzing usage patterns to enhance features and user experience
• Compliance: Meeting legal obligations and maintaining security standards

3.3 Communications

• Service Notifications: Updates about your account, interviews, and platform changes
• Marketing Communications: Product updates, feature announcements (with opt-out option)
• Security Alerts: Important security-related communications

4. Information Sharing and Disclosure

4.1 Authorized Sharing

• Employers to Candidates: Interview results, scores, and assessments as part of the recruitment process
• Within Organizations: Sharing candidate data among authorized users within the same organization
• Service Providers: Third-party vendors who assist in platform operations

4.2 Cross-Border Data Transfer

Data may be transferred outside India only in the following circumstances:

• With your explicit consent for each transfer
• To countries with adequate data protection
• Under approved transfer mechanisms
• For payment processing through secure gateways

4.3 Legal Requirements

We may disclose information when required by Indian law, including:

• Compliance with orders from Indian courts, tribunals, or government authorities
• Requests from law enforcement agencies, income tax department, or other statutory bodies
• Protection of our rights, property, or safety under Indian law
• Investigation of potential violations of our terms of service or Indian cyber laws

5. Third-Party Services

5.1 AI Service Providers

We use third-party AI models and services for:

• Resume parsing and analysis
• Interview question generation
• Candidate assessment and scoring
• Natural language processing

5.2 Payment Processing

We use RBI-licensed payment aggregators. Your payment information is handled according to:

• Payment processor privacy policies
• PCI DSS compliance standards
• Indian payment regulations
• Secure payment protocols

5.3 Other Service Providers

• Cloud Infrastructure: Secure database and hosting services with encryption
• Analytics: Web analytics for usage monitoring and performance
• Security: Identity verification and fraud prevention services

6. Data Security

6.1 Security Measures

• Encryption: Data encrypted in transit (TLS/SSL) and at rest (AES-256)
• Database Security: Cloud database with built-in encryption
• Access Controls: Multi-factor authentication and role-based permissions
• Network Security: DDoS protection and threat monitoring

6.2 Data Retention

In compliance with Indian data protection laws:

7. Your Rights Under Indian Law

7.1 Digital Personal Data Protection Act, 2023 Rights

• Right to Access: Request copies of your personal information we hold
• Right to Correction: Update or correct inaccurate information
• Right to Erasure: Request deletion of your data (subject to legal obligations)
• Right to Data Portability: Receive your data in a machine-readable format

7.2 Consent Management

• Withdraw Consent: You can withdraw consent at any time
• Consent Records: We maintain records of all consents
• Free Consent: All consent is given freely without coercion

7.3 Communication Preferences

• Opt-Out: Unsubscribe from marketing communications
• DND Compliance: We respect TRAI DND preferences
• Language Choice: Communications in Hindi, English, or regional languages

8. Data Localization

In compliance with Indian data localization requirements, a copy of all personal data collected from Indian users is stored on servers located within India. Cross-border transfers, where applicable, are governed by the provisions outlined in Section 4.2 above.

9. Children's Privacy

Our platform is not intended for use by individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected data from a minor, we will take steps to delete such information promptly.

10. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience on the platform. These include essential cookies for authentication and session management, as well as analytics cookies to understand usage patterns. You can manage cookie preferences through your browser settings.

11. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes via email or a prominent notice on the platform. Your continued use of the platform after such modifications constitutes acceptance of the updated policy.

12. Regulatory Compliance

This policy is designed to comply with applicable Indian laws and regulations, including the Information Technology Act, 2000 and its amendments, the Digital Personal Data Protection Act, 2023, and relevant rules and guidelines issued by regulatory authorities including CERT-In, TRAI, and the Data Protection Board of India.

13. Grievance Redressal and Contact Information

13.1 Grievance Officer

As required under Indian law:

13.2 General Contact

13.3 Escalation Process

If not satisfied with our response:

1. Contact our Grievance Officer first
2. Escalate to senior management if needed
3. File complaint with Data Protection Board of India
4. Approach appropriate consumer forums under Indian law