Privacy Policy

Your data, your rights. Complete transparency on how we protect your privacy.

Last updated: January 2026

Early Access Privacy Commitment

We're building Recuite with privacy-first principles. As an early access company, we're transparent about our data practices and commit to never selling your data. Your feedback helps us build better privacy controls.

Information We Collect

We collect only what's necessary to provide recruitment services: your account information, company data, candidate information you input, and usage analytics to improve our product. All data collection serves a specific purpose.

Account data (name, email, company)
Candidate information you input
Usage patterns for product improvement
Technical data (device, browser, IP)

How We Use Your Information

Your data powers Recuite features: candidate matching, analytics, notifications, and service improvements. We never use your data for advertising or sell it to third parties. Every use serves your recruitment needs.

Providing ATS functionality
Personalized candidate recommendations
Service notifications and updates
Product improvements based on usage

Ukrainian Data Hosting

All your data is hosted in Ukraine with GDPR-compliant backup in EU. We comply with both Ukrainian data protection laws and GDPR. Your data never leaves Ukraine/EU unless you explicitly integrate with international services.

Primary hosting: Ukraine data centers
Backup: EU data centers
GDPR and Ukrainian law compliance
No data transfers outside Ukraine/EU

Information Sharing

We do not sell your personal information. Period. We share data only with service providers (hosting, analytics) under strict confidentiality agreements, or when required by Ukrainian law. You control integrations with job boards and email services.

Service providers (hosting, analytics only)
Legal requirements (Ukrainian courts)
Your explicit consent (integrations)
Never for advertising or marketing

Your Rights (GDPR & Ukrainian Law)

You have full control over your data: access it anytime, correct inaccuracies, delete it (right to be forgotten), export it to another service (data portability), and object to processing. Contact us to exercise these rights—we respond within 48 hours.

Right to access your data
Right to rectification and correction
Right to erasure (be forgotten)
Right to data portability (export)

Data Security

We implement enterprise-grade security: AES-256 encryption at rest, TLS 1.3 for data in transit, regular security audits, strict access controls, and SOC 2 compliance roadmap. Security is a top priority, not an afterthought.

AES-256 encryption at rest
TLS 1.3 for all data transfers
Regular third-party security audits
Role-based access controls

Early Access Data Practices

During early access, we collect additional anonymized product usage data to improve features. You can opt out anytime. We're building granular privacy controls and will notify you 30 days before any policy changes.

Optional anonymized usage analytics
No personal data in analytics
Opt-out available in settings
30-day notice for policy changes

Privacy Questions?

We take privacy seriously and are happy to answer any questions. Our team typically responds within 24 hours:

[email protected]

Your Privacy Matters