ResumeGyani Logo

Data Processing Agreement

Comprehensive information about how we collect, process, store, and protect your data in compliance with global privacy regulations.

Privacy by Design

Privacy and data protection built into every system and process

Data Minimization

We only collect and process data necessary for our services

Global Compliance

Adherence to GDPR, CCPA, and other international privacy laws

Data Collection & Processing

What data we collect, why we collect it, and how we use it

Personal Data We Collect

Account Information

  • • Name, email address, phone number
  • • Company information and job title
  • • Profile picture and preferences
  • • Authentication credentials

Candidate Data

  • • Resume and CV information
  • • Skills, experience, and education
  • • Contact details and preferences
  • • Assessment results and scores

Usage Data

  • • Platform usage and activity logs
  • • Feature usage and preferences
  • • Performance and analytics data
  • • Technical information and device data

Processing Purposes

Service Delivery

  • • Providing AI-powered recruitment tools
  • • Resume analysis and candidate matching
  • • Skill gap analysis and predictions
  • • Interview scheduling and management

Platform Improvement

  • • Enhancing AI algorithms and accuracy
  • • Improving user experience and interface
  • • Developing new features and capabilities
  • • Performance optimization and bug fixes

Legal & Compliance

  • • Meeting legal and regulatory requirements
  • • Preventing fraud and security threats
  • • Responding to legal requests and disputes
  • • Maintaining audit trails and records

Legal Basis for Processing

The legal foundations for our data processing activities under GDPR

Contract Performance

Service Delivery

Processing necessary to provide our recruitment services, manage accounts, and fulfill our contractual obligations to customers.

Legitimate Interests

Business Operations

Processing for our legitimate business interests, including service improvement, analytics, and fraud prevention, balanced against individual privacy rights.

Consent

Optional Features

Processing based on explicit consent for optional features like marketing communications, advanced analytics, and third-party integrations.

Legal Compliance

Regulatory Requirements

Processing required to comply with legal obligations, including data retention requirements, tax obligations, and regulatory reporting.

Vital Interests

Safety & Security

Processing necessary to protect vital interests, including preventing harm, ensuring platform security, and responding to emergencies.

Public Task

Public Interest

Processing in the public interest, such as supporting employment initiatives and contributing to labor market research and development.

Your Rights & Controls

Rights you have over your personal data and how to exercise them

Right of Access

Request copies of your personal data and information about how we process it.

Right to Rectification

Request correction of inaccurate or incomplete personal data.

Right to Erasure

Request deletion of your personal data under certain circumstances.

Right to Restrict Processing

Request limitation of processing in specific situations.

Right to Data Portability

Receive your personal data in a structured, machine-readable format.

Right to Object

Object to processing based on legitimate interests or for direct marketing.

Right to Withdraw Consent

Withdraw consent for processing based on consent at any time.

Right to Lodge a Complaint

File a complaint with supervisory authorities about our data practices.

Data Retention & Deletion

How long we keep your data and our deletion practices

Retention Periods

Account Data

Active + 3 years

Account information retained while account is active plus 3 years after closure.

Candidate Data

7 years

Resume and candidate information retained for 7 years for legal compliance.

Usage Analytics

2 years

Anonymized usage data retained for 2 years for service improvement.

Security Logs

5 years

Security and audit logs retained for 5 years for compliance and investigation.

Deletion Process

Automated Deletion

Data is automatically deleted when retention periods expire.

  • • Monthly automated cleanup processes
  • • Secure deletion from all systems
  • • Backup purging within 30 days

On-Request Deletion

Data deletion upon valid user requests within legal constraints.

  • • Response within 30 days
  • • Complete removal from active systems
  • • Confirmation provided to requester

Secure Disposal

Industry-standard secure deletion methods for all data types.

  • • Cryptographic erasure for encrypted data
  • • Multi-pass overwriting for storage media
  • • Physical destruction of hardware when retired

Data Protection Contact

Contact us about data processing, privacy rights, or compliance questions

Data Protection Officer

Email
dpo@resumegyani.com
Response Time
Within 30 days
Languages
English, Hindi

Exercise Your Rights

To exercise any of your data protection rights, please contact us with:

  • • Your full name and email address
  • • Specific right you wish to exercise
  • • Relevant details about your request
  • • Proof of identity (for security purposes)

Important Note

This Data Processing Agreement is effective as of January 1, 2024, and is subject to updates. We will notify you of any material changes to our data processing practices. For the most current version, please visit our website or contact our Data Protection Officer.