1) Who We Are

Hirelink ("Hirelink", "we", "us") provides recruitment intermediation services introducing candidates to independent employers ("Client Companies"). We are the data controller for personal data we collect and process as described in this Policy.

• Legal name: Hirelink OU
• Registered office: 
• Contact for privacy enquiries & rights requests: info@hirelink.agency

If we share your profile with a Client Company, that company becomes an independent controller for its copy of your data.

2) Scope

This Policy applies to:

• Candidates who submit CVs or apply for roles;
• Referrers who submit referrals to our program;
• Client contacts at Client Companies;
• Website/portal visitors (including cookies and analytics);
• Any person who communicates with us by email, phone, or messaging apps.

3) Personal Data We Collect

Depending on your relationship with us, we may collect:

3.1 Identification & Contact

Name, email, phone, address, nationality, date of birth (where relevant), work authorization/visa status, social/profile links.

3.2 Professional Information

CV/resumé details, education, qualifications, certifications, language skills, employment history, references, portfolio, salary expectations, availability, preferred locations.

3.3 Communications & Scheduling

Emails, messages, call notes, interview dates and outcomes, feedback from interviews.

3.4 Verification Data

Identity/eligibility checks (e.g., ID, right-to-work), employment/education verification, criminal record checks only where lawful and proportionate.

3.5 Special Category Data (Optional)

Only where you choose to provide it or where necessary and lawful: health/disability information for accommodations, diversity/equal opportunity data, trade union membership. If submitted, we will request explicit consent where required.

3.6 Website & Technical Data

IP address, device identifiers, pages viewed, timestamps, cookies/SDK data, approximate location, referral URLs. See Cookie Notice.

4) How We Obtain Data

• Directly from you (forms, CV uploads, emails, calls, messaging apps);
• From Referrers who confirm you consented to the introduction;
• From public sources (e.g., LinkedIn) and job boards where you have made your data available for recruitment purposes;
• From Client Companies (feedback on interviews, outcomes);
• From service providers (interview tools, video platforms, analytics).

5) Purposes & Lawful Bases (Art. 6 GDPR)

We process personal data for:

1. Recruitment Intermediation: receive, review, and match candidates to roles; share profiles with Client Companies; schedule interviews; manage feedback.
   Bases: Legitimate interests (Art. 6(1)(f)); pre‑contractual steps at your request (Art. 6(1)(b)).
2. Verification & Compliance: identity, right‑to‑work, and other checks where required by law or Client policy.
   Bases: Legal obligations (Art. 6(1)(c)); legitimate interests (Art. 6(1)(f)).
3. Communications: respond to queries; send role opportunities; manage feedback.
   Bases: Legitimate interests; consent where required.
4. Marketing & Newsletters (optional): send updates, job alerts, events.
   Bases: Consent (Art. 6(1)(a)). You can withdraw at any time.
5. Referrals Program: administer and validate referrals; pay rewards.
   Bases: Legitimate interests; legal obligations (tax/reporting).
6. Website Operations & Analytics: operate our sites/portals; measure performance; enhance security; prevent fraud.
   Bases: Legitimate interests; consent for non‑essential cookies.
7. Legal Claims & Record‑Keeping: establish, exercise, or defend legal claims; maintain business records.
   Bases: Legitimate interests; legal obligations.

Special Category Data (Art. 9 GDPR): processed only with explicit consent (Art. 9(2)(a)) or where necessary for employment/social protection law (Art. 9(2)(b)) or substantial public interest as permitted by law.

6) Sharing of Personal Data

We may share data with:

• Client Companies evaluating your candidacy;
• Service providers (hosting, email, scheduling, ATS/CRM, video interview tools, analytics) bound by contracts and confidentiality/security obligations;
• Professional advisors (legal, accounting, compliance);
• Authorities where required by law or court order.

We do not sell personal data.

7) International Data Transfers

Where recipients are outside the EEA/UK/Switzerland, we implement appropriate safeguards, such as Standard Contractual Clauses (SCCs) and, where relevant, Transfer Impact Assessments. Copies of applicable safeguards can be requested at info@hirelink.agency.

8) Retention Periods

We retain personal data only as long as necessary for the purposes described:

• Candidates & Referrals: typically 24 months from last interaction, unless law requires longer/shorter or you request deletion earlier.
• Client contacts: while the business relationship is active and for a reasonable period thereafter.
• Marketing lists: until you withdraw consent or unsubscribe.
• Legal/record‑keeping: as required by applicable law (e.g., tax, dispute resolution).

9) Your Rights (EU/EEA & UK)

You may have the right to access, rectify, erase, restrict, object, and port your personal data, and to withdraw consent at any time (without affecting prior processing). You can exercise these rights by emailing info@hirelink.agency. We may request proof of identity.

You also have the right to complain to your local data protection authority. In Greece: Hellenic Data Protection Authority (HDPA).

10) Security

We apply appropriate technical and organizational measures: access controls, encryption in transit, least‑privilege access, employee/vendor confidentiality, backups, and monitoring. No system is perfectly secure; please use discretion when sharing sensitive data.

11) Children’s Data

Our services are not directed to children under 18. We do not knowingly collect children’s data. If you believe a child has provided data, contact info@hirelink.agency to request deletion.

12) Automated Decision‑Making & Profiling

We do not make hiring or other decisions solely based on automated processing that produces legal or similarly significant effects. We may use scoring/matching tools to assist humans in evaluating fit.

13) Cookies & Similar Technologies

We use cookies and similar technologies for essential operations, analytics, and (where applicable) marketing. Non‑essential cookies are used only with your consent. For details, retention, and cookie settings, see our Cookie Notice.

14) Third‑Party Links

Our websites may link to third‑party sites we do not control. We are not responsible for their privacy practices. Review their policies before providing data.

15) Changes to This Policy

We may update this Policy from time to time. Material changes will be posted on our website or communicated by email. Please check the "Last Updated" date.

Last Updated: [insert date]

16) Contact

For any questions, rights requests, or complaints relating to privacy, contact info@hirelink.agency.

17) Jurisdiction‑Specific Addendum (Optional)

If you engage with us from specific jurisdictions, additional rights or disclosures may apply. Where required, we will provide a jurisdictional annex (e.g., UK GDPR, Swiss FADP, limited CCPA disclosures for website visitors). For enquiries, email info@hirelink.agency.

Consent & Preferences (Suggested Form Language)

• ☐ I consent to receive job alerts and career content by email (optional; you can unsubscribe at any time).
• ☐ I consent to the processing of any special category data I choose to submit for recruitment purposes (optional; only where necessary).