Legal Policies
For complete legal details, please refer to our published policies on hellorecruiter.ai:Privacy Policy
Our full privacy policy covering data collection, usage, sharing, and your rights.
Terms of Service
The terms governing your use of the Hello Recruiter platform and services.
Cookie Policy
Details on how we use cookies, tracking technologies, and how to manage your preferences.
Data We Collect
Hello Recruiter collects and processes data to provide AI-powered interview and evaluation services. Here’s an overview of the types of data involved:Company Data
- Account information — Organization name, admin email addresses, team member profiles, and billing details.
- Job data — Job titles, descriptions, evaluation criteria, interview agendas, and AI knowledge base content you upload.
- Branding assets — Company logos, brand colors, and custom interview messaging.
Candidate Data
- Profile information — Name, email address, and resume (when submitted through the candidate application flow).
- Interview recordings — Audio and/or video recordings captured during AI interviews, used for transcription and evaluation.
- Evaluation data — AI-generated scorecards, risk signal assessments, and section-level scoring breakdowns.
- Technical metadata — Browser type, device information, and IP address for troubleshooting and fraud detection.
For candidates: You can review what data we collect about you in our Privacy Policy. If you have questions about your data, contact the company that invited you to interview or email support@hellorecruiter.ai.
Data Retention
We retain data only as long as necessary to provide our services and meet legal obligations.| Data Type | Retention Period | Notes |
|---|---|---|
| Interview recordings | 12 months after interview | Auto-deleted unless extended by the company |
| Candidate scorecards | Duration of company account | Removed when the job is permanently deleted |
| Candidate profile data | 12 months after last activity | Or upon candidate deletion request |
| Job data | Duration of company account | Retained while the job exists in any status |
| Account & billing data | Duration of account + 90 days | Extended as required by tax/legal obligations |
| Audit logs | 24 months | For security and compliance purposes |
Data Security
Hello Recruiter implements industry-standard security measures to protect your data:- Encryption in transit — All data is transmitted over HTTPS/TLS 1.2+.
- Encryption at rest — Stored data is encrypted using AES-256 encryption.
- Access controls — Role-based permissions ensure team members only access data appropriate to their role (Owner, Admin, Reviewer).
- Infrastructure — Hosted on secure cloud infrastructure with SOC 2-aligned operational practices.
- Regular audits — We conduct periodic security assessments and vulnerability testing.
Candidate Rights
Depending on your jurisdiction, candidates may have the following rights regarding their personal data:- Right to access — Request a copy of the personal data we hold about you.
- Right to deletion — Request that your interview data and personal information be deleted.
- Right to correction — Request corrections to inaccurate personal data.
- Right to portability — Request your data in a machine-readable format.
- Right to object — Object to certain types of data processing.
GDPR & International Compliance
Hello Recruiter is designed to support compliance with major data protection regulations including GDPR (EU), CCPA (California), and other applicable privacy laws. Companies using Hello Recruiter for candidates in regulated jurisdictions should review our Privacy Policy for details on data processing agreements, sub-processors, and cross-border data transfers.Need a Data Processing Agreement (DPA)? Enterprise customers can request a signed DPA by contacting legal@hellorecruiter.ai.