1. Introduction
Sensiq ("we," "our," or "us") operates the Sensiq AI-powered recruitment platform. This Privacy Policy explains how we collect, use, store, disclose, and protect personal information when you access or use our services.
We are committed to transparency and to handling personal data in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable laws.
This Policy applies to:
- Individuals who use the Sensiq platform
- Candidates whose information is uploaded or processed by users
- Visitors to our website
- Users of AI-driven features, including Sensiq Assistant
This Policy should be read together with our AI Processing Notice, which governs how personal data is used in connection with AI-powered features and model development.
2. Information We Collect
2.1 Account Information
When your organisation creates an account or registers users, we collect:
- Name and email address
- Organisation name and configuration settings
- Role, permissions, and preferences
- Encrypted password and authentication credentials
2.2 Candidate Information
When using Sensiq for recruitment, your organisation may upload, generate, or process:
- CVs, résumés, cover letters, portfolios
- Candidate contact details
- Skills, education, experience, and employment history
- Interview transcripts and responses
- Application history and pipeline metadata
- AI-generated insights, scores, and enrichment data
2.3 Communication Data
We collect information from:
- Emails
- Support messages
- Phone communications (metadata only unless stated otherwise)
2.4 Usage & Technical Data
Collected automatically to maintain and secure the platform:
- IP address, browser type, device identifiers
- Pages visited and features accessed
- Timestamps and session data
- Performance events, logs, and diagnostics
3. How We Use Personal Data
We process data to:
- Provide and maintain the Sensiq platform
- Deliver AI-enabled recruitment workflows and insights
- Enable CV parsing, enrichment, and interview automation
- Offer scoring, matching, dashboards, and workflow tools
- Support secure login and account management
- Communicate service updates
- Detect, investigate, and prevent security incidents
- Improve system performance, fairness, and reliability
AI-specific processing is governed by our separate AI Processing Notice.
We do not sell personal data.
This Privacy Policy describes how personal data is handled for data-protection purposes only.
It does not grant users, organisations, or candidates any rights to access, reuse, infer, replicate, or derive insights from the Service's underlying systems, models, workflows, outputs, or behaviour, which are governed by the Terms of Service and any applicable confidentiality or non-use agreements.
4. Legal Basis for Processing
Depending on context, we rely on:
4.1 Contractual Necessity
To operate the platform and provide agreed services.
4.2 Legitimate Interests
Including:
- Security and fraud prevention
- Platform optimisation and internal analytics
- AI model development (as described in the AI Processing Notice)
- Customer support and troubleshooting
Assessed and documented through Legitimate Interests Assessments.
4.3 Legal Obligations
Compliance with applicable law and regulatory requests.
4.4 Consent
Where explicitly required (e.g., certain marketing communications).
5. AI and Automated Processing
AI is used for:
- Parsing and enrichment
- Automated interviews
- Generating scores, insights, and recommendations
- Sensiq Assistant assistance
- Continuous improvement of model accuracy and fairness
AI-related processing, including our use of personal data for internal model development under legitimate interests, is detailed in our AI Processing Notice.
We do not make solely automated decisions with legal or similarly significant effects.
6. Data Sharing and Disclosure
6.1 Service Providers
We share data with trusted providers supporting:
- Cloud hosting and storage
- AI model processing
- Security infrastructure
- Email and communication services
Providers operate under confidentiality and data-protection obligations.
6.2 Organisational Administrators
Administrators within your organisation can access user and candidate data according to their permissions.
6.3 Legal and Regulatory Requirements
We may disclose data where required to comply with legal obligations.
6.4 Business Transactions
In the event of a merger or acquisition, data may be transferred under appropriate safeguards.
We do not sell personal data.
7. Data Security
We implement robust security measures, including:
- Encryption in transit and at rest
- Access-controlled infrastructure
- Security monitoring and intrusion detection
- Role-based access controls
- Confidentiality obligations for staff
- Regular audits and testing
These measures safeguard against unauthorised access or loss.
8. Data Retention
We retain personal data only as long as necessary to:
- Provide the platform
- Comply with legal obligations
- Support legitimate operational needs
- Respect your organisation's retention policies
Candidate data can be deleted by authorised organisation users at any time. Upon account closure, deletion is carried out directly by Sensiq Support.
9. International Data Transfers
Personal data may be processed in jurisdictions outside your country. We use legally recognised safeguards such as:
- Standard Contractual Clauses (SCCs)
- UK Transfer Addendum
- Contractual and technical protections
These ensure compliance with international data-transfer requirements.
10. Your Rights
Under the UK GDPR, individuals have the right to:
- Access their personal data
- Rectify inaccuracies
- Erase personal data where applicable
- Restrict processing
- Object to processing based on legitimate interests
- Port data in a structured format
- Withdraw consent, where applicable
Requests relating to candidate data should be directed to the hiring organisation, which acts as the primary data controller.
11. Cookies and Tracking Technologies
We use cookies to:
- Maintain login sessions
- Improve user experience
- Analyse usage patterns
- Enhance platform performance
More details are in our Cookie Policy.
12. Changes to This Policy
We may update this Privacy Policy periodically. Significant changes will be communicated via email or platform notification. Continued use of Sensiq after updates indicates acceptance.
13. Data Controller Information
For most personal data processed within the platform, your organisation acts as the data controller and determines the purposes and means of processing.
Sensiq may act as a controller for limited internal purposes such as platform security, service improvement, compliance monitoring, and AI development, as described in the AI Processing Notice.
Such processing does not confer any rights to customers, users, or candidates in respect of Sensiq's models, systems, outputs, or intellectual property.