Last updated: January 13, 2023
At HireClix we take your privacy rights, and your expectation of privacy, very seriously. Our Privacy Policy is brand new and we strongly encourage you to read the policy and to let us know if you have any questions.
This Privacy Policy describes HireClix’s policies and procedures regarding the collection, use and disclosure of information which you provide when you use HireClix’s website and any future websites (the “Web Sites”), when you use the related services and features offered on the Web Sites, and when you subscribe to, register for HireClix’s online events and webinars (the Web Sites, the related services and features, including any HireClix’s mobile and digital applications, the online events and webinars, and any other products and/or services offered by HireClix are collectively referred to as the “HireClix Products”).
HireClix will not use or share your information obtained through your use of the HireClix Products for any purpose or with anyone except as described in this Privacy Policy. However, please note that this Privacy Policy does not apply to information we collect by other means or from other sources.
Information You Provide. When you access the Web Sites, subscribe to, register for or participate in conferences or webinars, use mobile or digital applications, participate in social networking, enter contests or surveys, make purchases of any HireClix Products, or at other times, we collect and store personally identifiable information (generally defined to mean information that can be used on its own or with other information to identify, contact or locate a single person, or identify an individual in context) about you that may include, your name, postal and e-mail addresses, professional affiliation, information regarding your computer system, and other information.
We request certain information from you if you make a payment from one of our Web Sites. You must provide contact information, such as your e-mail address, and payment information, such as a credit/debit card number and the expiration date. Payment information is used for payment processing purposes only. We use a credit/debit card processing company to process credit/debit card charges for HireClix Products. We do not retain, share, store or use credit/debit card information for any secondary purposes (subject to Federal, and applicable non-US law such as the European Union’s General Data Privacy Regulation, or “GDPR”) and will exercise reasonable care, but no less than the care required by applicable laws, to prevent disclosure or use of credit/debit card information.
Information Provided By Third Parties. We may from time to time obtain information about you from third-parties such as business partners, mobile carriers or other companies. If you use your login credentials from a social networking site (“SNS”) to use a HireClix Product, we may receive information from such SNS in accordance with the terms and conditions of the SNS. We may use any information about you which we receive from a third party to include in our database(s) or append to existing user data to add more detail to the information we have about you.
Cookies. For each visitor to our Web sites, our web server may automatically attempt to identify the user through a cookie placed within the user’s web browser (a cookie is a message given to a web browser by a web server; the browser stores the message in a text file; the message is then sent back to the server each time the browser requests a page from the server). This is done to provide users with more relevant access to the Web Sites. From time to time we may also track information, in aggregate, on pages and features that users access or view. The activity is collected and stored in our server’s log files. We may log Internet Protocol (IP) addresses, or the location of your computer on the Internet, for systems administration and troubleshooting purposes. We use this information in an aggregate fashion to track access to the Web Sites. Our email alerts utilize tracking technology that allows us to see how many newsletter e-mails are opened and the e-mail address of users who have clicked on a given story, feature or advertisement. We use this information for internal purposes, to measure the aggregate number of people who view a given newsletter item.
We may also place cookies on users’ computers to allow users to store login information, personalize their user experience and navigate easily through the Web Sites. Through the use of additional cookies or technology, we will have the ability to track users by their behavior profile and geographic location for the purpose of pushing advertising that matches their interests and/or specific location. We, or the service provider, will inform you of such collection at the time you use the service. By giving your consent, you agree to our collection, use and disclosure of your location information as described.
Third Party Advertisements. We may use third-party advertising service vendors to serve advertisements on the HireClix Products. These vendors may use cookies, web beacons or similar technologies to serve you advertisements tailored to interests you have shown by browsing on this and other sites you have visited. In doing so, these vendors may collect non-personal information such as your browser type, your operating system, Web pages visited, time of visits, content viewed, ads viewed, and other clickstream data. The use of cookies, web beacons or similar technologies by these advertising service vendors is subject to their own privacy policies, not ours, and we disclaim all liability in connection therewith. For more information about third-party ad networks that use these technologies, and to opt-out of their collection of information, see http://www.networkadvertising.org/managing/opt_out.asp and http://www.aboutads.info/consumers. You may have additional rights regarding opt-out of third party advertising services, including those set forth below, if you reside in a jurisdiction such as the European Economic Area which provides for enhanced user rights.
The following sets forth the ways we process your personal information. For residents of the European Economic Area, this disclosure is required by GDPR Articles 13 and 14. GDPR also requires us to inform you that the legal basis for processing this information is, as applicable, your consent, our legitimate interest, or a contract we have entered into with you.
(a) We may process information about your use of the HireClix Products (“usage data”). The usage data may include your IP address, geographical location, browser type and version, operating system, referral source, length of visit, page views and website navigation paths, as well as information about the timing, frequency and pattern of your use of the HireClix Products. We use this usage data for the purposes of analyzing your use of the HireClix Products.
(b) We may process your account information (“account data”). The account data may include your name and email address. We use this account data to provide the HireClix Products to you, maintain back-ups of our databases and communicate with you.
(c) We may process your information which you have included in your personal profile on our websites (“profile data”). The profile data may include your name, address, telephone number, email address, profile pictures, date of birth, educational details and employment details. We use this profile data to enable and monitor your use of the HireClix Products.
(d) We may process information that you post on our Web Sites or through our services (“publication data”). We use this publication data to enable the posts and to administer the HireClix Products.
(e) We may process information contained in any enquiry you submit to us regarding the HireClix Products (“enquiry data”). We use this enquiry date for the purposes of offering, marketing and selling relevant goods and/or services to you.
(f) We may process information relating to transactions, including purchases of goods and services, that you enter into with us and/or through HireClix (“transaction data”). The transaction data may include your contact details, your payment card details and the transaction details. We use this transaction data for the purpose of supplying the purchased goods and services to you and keeping proper records of those transactions.
(g) We may process information that you provide to us for the purpose of subscribing to our email notifications and/or newsletters and downloading HireClix or third party white papers (“notification data”). We use this notification data for the purposes of sending you relevant notifications, newsletters and/or white papers.
(h) We may process information contained in or relating to any communication that you send to us (“correspondence data”). The correspondence data may include the communication content and metadata associated with the communication. Our Web Site will generate the metadata associated with communications made using the website contact forms. We use this correspondence data for the purposes of communicating with you and record-keeping.
(i) We may process any of your personal information where necessary for the establishment, exercise or defense of legal claims, whether in court proceedings or in an administrative or out-of-court procedure, and where necessary for the purposes of obtaining or maintaining insurance coverage, managing risks, or obtaining professional advice.
(j) In addition to the specific purposes for which we may process your personal information set forth in this Privacy Policy, we may also process any of your personal information where such processing is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person
(k) All the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.
We may store personal information in locations outside the direct control of HireClix (for instance, on servers or databases co-located with hosting providers).
As we develop our business, we may buy or sell assets or business offerings. Customer, email, and visitor information is generally one of the transferred business assets in these types of transactions. We may also transfer or assign such information in the course of corporate divestitures, mergers, or dissolution. In such cases we cannot control acquiring parties’ use of your information.
We may disclose your personal information if required to do so by law or subpoena or if we believe that it is reasonably necessary to comply with a law, regulation or legal request; to protect the safety of any person; to address fraud, security or technical issues; or to protect HireClix’s rights or property.
Additional use of your personal information that is not described in this Privacy Policy will only take place as required by statute or when we have obtained your consent.
The HireClix Products may contain links to other web sites or services that may be subject to less stringent privacy standards. HireClix cannot assume any responsibility for the privacy practices, policies or actions of the third parties that operate these websites or services. We are not responsible for how such third parties collect, use or disclose your personal information. You should review their privacy policies before providing them with personal information.
We are committed to providing users of HireClix Products with the choice to receive or not receive e-mails, promotional materials and/or other communications from HireClix. We only send commercial emails to users who have requested or consented to receive emails about our services and products. We do not send unsolicited commercial emails (“spam”), buy or sell email lists, or use purchased or harvested email lists. We offer commercial email recipients the opportunity to opt-out of further communications in every email. If you want to stop receiving commercial emails, promotional or other marketing materials, you can do so at any time by contacting HireClix at [email protected].
The HireClix Products are operated in and provided from the United States. If you are located in Canada, the European Union or elsewhere outside of the United States, please be aware that any information you provide to us will be transferred to the United States. By using the HireClix Products, participating in any of our services and/or providing us with your information, you consent to this transfer.
Canadian residents also have certain rights to know how their information may be shared with third parties for direct marketing purposes. As detailed above, you may contact us for such information or to opt-out of the sharing of your personal information with third parties for marketing purposes at any time by sending an e-mail stating this preference and including your full name and e-mail address to [email protected]. Please note that this opt-out does not prohibit disclosure for non-marketing purposes. [email protected]. Please note that this opt-out does not prohibit disclosure for non-marketing purposes.
The General Data Protection Regulation, effective May 25, 2018, requires that certain information and certain rights be provided to residents of the European Union, as follows.
Transferring Personal Information From The EU To The US. HireClix has its headquarters in the United States. Information we collect from you will be processed in the United States. The United States has not sought nor received a finding of “adequacy” from the European Union under Article 45 of the GDPR. HireClix relies on derogations for specific situations as set forth in Article 49 of the GDPR. In particular, HireClix collects and transfers to the U.S. personal information only (a) with your consent, (b) to perform a contract with you, or (c) to fulfill a compelling legitimate interest of HireClix in a manner that does not outweigh your rights and freedoms. HireClix endeavors to apply suitable safeguards to protect the privacy and security of your personal information and to use it only consistent with your relationship with HireClix and the practices described in this Privacy Policy.
You May Elect Not To Provide Personal Information. You may choose not to provide HireClix with your personal information. However, if you choose not to provide your personal information, you may not be able to enjoy the full range of services which HireClix offers.
How to Exercise Your Rights. If you reside in the European Economic Area, you have certain rights to the personal information that we have collected about you. To exercise your rights to your personal information, please contact HireClix at [email protected]. We will respond to reasonable requests as soon as practicable, and in any event, within the time limits prescribed by law. You have the following rights:
(a) Right Of Access To Your Personal Information: You have the right to ask us for confirmation on whether we are processing your personal information, and access to the personal information and related information on that processing (for example, the purposes of the processing, or the categories of personal information involved).
(b) Right to Correction: You have the right to have your personal information corrected.
(c) Right to Erasure: You have the right to ask us to delete your personal information. This right may be exercised, among other times: when your personal information is no longer necessary for the purposes for which it was collected or otherwise processed; when you withdraw consent on which processing is based and where there is no other legal ground for processing; when you object to processing and there are no overriding legitimate grounds for the processing; or when your personal information has been unlawfully processed.
(d) Right To Restriction Of Processing: You have the right to request the limiting of our processing under limited circumstances, including: when the accuracy of your personal information is contested; when the processing is unlawful and you oppose the erasure of your personal information and request the restriction of the use of your personal information instead; or when you have objected to processing pending the verification whether the legitimate grounds of HireClix override your grounds.
(e) Right To Data Portability: You have the right to receive the personal information that you have provided to us, in a structured, commonly used and machine-readable format, and you have the right to transmit that information to another controller, including to have it transmitted directly, where technically feasible.
(f) Right To Object: You have the right to object to our processing of your personal information, as permitted by law. This right is limited to processing based on GDPR Art. 6(1)(e) or (f), and includes profiling based on those provisions, and processing for direct marketing purposes, after which we will no longer process your personal information unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms or for the establishment, exercise or defense of legal claims.
Right To Lodge A Complaint Before The Data Protection Authority. We encourage you to contact us directly and allow us to work with you to address your concerns. Nevertheless, you have the right to lodge a complaint with a competent data protection supervisory authority, in particular in the EU Member State where you reside, work or the place of the alleged infringement. You have the right to do so if you consider that the processing of personal information relating to you infringes applicable data protection laws.
The security of the HireClix and your information is of great importance to HireClix. HireClix has reasonable security measures in place to protect the loss, misuse and alteration of your information under HireClix’s control, but we make no assurances about our ability to prevent any such loss, misuse or alteration, and we shall have no liability to you or any third party from any loss, misuse or alteration. We do not warrant that your access to the HireClix Products is completely secure. You should promptly notify HireClix if your account, username or password have been lost or stolen. HireClix will never ask you for your password. If you need a new user name and/or password, HireClix will generate a new username and password automatically through its computers and send it to your e-mail.
HireClix shall notify any user whose information is suspected of being accessed, disclosed, altered or deleted by an unauthorized person, so that the user can take appropriate measures to minimize the adverse effect of such a data security breach (a “Breach Notification”). HireClix will make such Breach Notification soon after it learns of a breach, unless it deems, at its sole discretion, that such Notification might hinder and prevent ongoing efforts to detect the source of the breach. For the avoidance of doubt, a Breach Notification does NOT constitute an admission by HireClix that the breach occurred as a result of malpractice, failure, bad faith or negligence on behalf of HireClix or that the breach even occurred in HireClix’s systems.
1. By texting a keyword to short code {942-942}, you consent to receive one or more automated texts at the phone number from which you texted. Through this action, you are effectively “Subscribing” to receive communication from HireClix, either directly or on behalf of its clients.
2. We will not be liable for any delays in the receipt of any SMS messages as delivery is subject to effective transmission from your mobile service operator. SMS MESSAGE SERVICES ARE PROVIDED ON AN “AS IS” BASIS, AND WE MAKE NO WARRANTY, EXPRESS OR IMPLIED, AND ALL WARRANTIES, INCLUDING IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR PARTICULAR PURPOSE, ARE HEREBY EXPRESSLY DISCLAIMED.
3. Data obtained from you in connection with this SMS service may include your cell phone number, your carrier’s name, and the date, time and content of your messages, as well as other information that you provide. We may use this information to contact you and to provide the services you request from us.
4. By Subscribing, you consent to receive text messages, including alerts and updates, up to {5} messages per month. In the event that you no longer wish to receive text messages then see the cancellation option in Section 6 below.
5. By Subscribing or otherwise using the service, you acknowledge and agree that we will have the right to change and/or terminate the service at any time, with or without cause and/or advance notice.6. To cancel your SMS subscriptions, text STOP to {942-942} in reply to a text message you receive. You may receive a subsequent message confirming your opt-out request.
7. For additional help, text HELP to {942-942} in reply to a text message you receive.
8. Message and Data Rates May Apply.
9. T-Mobile® is not liable for delayed or undelivered messages.
10. United States Participating Carriers Include AT&T, T-Mobile®, Verizon Wireless, Sprint, Boost, U.S. Cellular®, MetroPCS®, InterOp, Cellcom, C Spire Wireless, Cricket, Virgin Mobile and others.
11. Program Availability: Currently, the Program is only available to residents of the United States. You understand and
acknowledge that you may not sign up for, access, or attempt to access or use the Program from countries outside of the U.S. You agree to abide by U.S. and other applicable export control laws and not to transfer, by electronic transmission or otherwise, any content or software subject to restrictions under such laws to a national destination or person prohibited under such laws.
12. Questions / Support: You can contact us from your mobile phone, send a text message with the word “HELP” to {942-942}.
This Privacy Policy shall be governed by the laws of the Commonwealth of Massachusetts, without regard to its conflict of laws provisions.
If we change our privacy policies and procedures, we will post those changes on this page to keep you aware of what information we collect, how we use it and under what circumstances we may disclose it. Changes to this Privacy Policy are effective when they are posted on this page. Please check this page on a consistent basis.
Please contact HireClix if you have any questions about this Privacy Policy, the practices of HireClix or your dealings with the Web Sites. You can contact us by email at [email protected] or by postal mail to HireClix LLC, 3 Heritage Way Suite #4 Gloucester, MA 01930
In case of any queries related to our security statement below, please send us a detailed email at [email protected] updated: January 12, 2024
HireClix is an ISO 27001 company with certification achieved in March 2023. The scope of this certification covers the design, development, maintenance, technical support, sales, marketing of HireClix platform, and the status can be checked here https://certification.inkasec.com/verify-IN300501.html
HireClix employs a cloud infrastructure for its services. All service activities are conducted by HireClix employees. An intelligent tenant segregation layer allows us to safely store data of different clients (tenants) separately. HireClix employs industry standard practices for security controls such as firewalls, intrusion detection, and change management.
HireClix’ distributed architecture for data collection and processing allows it to scale horizontally as the number of clients and volume of traffic increase. HireClix uses multiple monitoring processes and tools to continuously track network resources, operating systems, applications and capacity. Systems are scaled up when predetermined capacity thresholds are reached.
HireClix has practices in place as part of its business continuity planning to assist management in identifying and managing risks that could affect the organization’s ability to provide reliable services to its clients (as further described below). These practices are used to identify significant risks for the organization, initiate the identification and/or implementation of appropriate risk mitigation measures, and assist management in monitoring risk and remediation activities.
HireClix maintains, and annually updates, a general written Information Security & Access Policy, which details employee’s responsibilities toward confidentiality of client data and acceptable use of resources. All staff must review and sign this policy during on-boarding.
Only authorized personnel can administer systems or perform security management and operational functions. Authorization for and implementation of changes are segregated responsibilities wherever appropriate to the organization. Access to client data is restricted to legitimate business use only.
HireClix employees are required to undergo background checks and provide specific documents verifying identity at the time of employment.
General information security responsibilities are documented in HireClix Information Security & Access Policy, which all employees must sign as part of their onboarding.
General information security training is provided to all new employees (both permanent and temporary) as part of their onboarding. A compulsory annual security and privacy training requirement ensures employees refresh their knowledge and understanding. Additional security training is also provided to employees who handle client data.
HireClix manages a formal termination process, which includes removal of any potential access to HireClix and related data. The exit interview reminds ex-employees of their remaining employment restriction and contractual obligations.
All critical and repeatable processes and security checks in the HireClix production environment are either documented in procedures or implemented as automation scripts. HireClix maintains and follows formal change management processes. All changes to the production environment (network, systems, platform, application, configuration, including physical changes such as equipment moves) are tracked and documented. All relevant business owners are represented at regular change management meetings.
HireClix stores all client data in fully redundant databases. Daily and intraday data is backed up on a scheduled basis and stored in a geographically separated location.
HireClix uses an industry standard enterprise application management solution to monitor systems 24×7, trigger alerts based on event logs, and to facilitate alerting, trend analysis, and risk assessment.
All traffic from, to and within HireClix services and microservices is encrypted using the SSL/TLS protocol. HireClix enforces the usage of strong TLS cipher suites.
Automated email notifications are being sent with TLS encryption, however the responsibility of supporting this from a receiver perspective remains with the customer.\S/MIME encryption can be configured on a case-by-case basis.
HireClix enforces a strong password policy by default and allows for clients to choose an even stricter customized policy if necessary.
Passwords are stored hashed and salted and access to an account is logged, tracked, and audited.
HireClix uses an enterprise-grade automated security management solution to prevent malicious actions, malicious users, brute-force attacks, cross-site forgery, DDoS and various injection attacks (OWASP TOP 10).
HireClix has developed a robust Security Incident Response Process (“SIRP”) to address events in an efficient and timely manner. The SIRP framework describes how the team is deployed, documents the criteria for incident severity, defines the investigation and diagnosis workflow, details documentation and reporting requirements, and establishes contact information. Security incidents are escalated from the initial responders to the relevant Account Manager for client notification. All critical issues confirmed are remediated immediately. Issues of lesser severity are evaluated for resolution as part of the standard development process.
Business continuity planning (BCP) and disaster recovery (DR) activities prioritize critical functions supporting the delivery of HireClix to its clients. The development and scope of BCP and DR in each business function reflects the criticality of each function and/or facility in order to maximize the effectiveness of these efforts.
For data storage, analysis, and backups, HireClix utilizes the preexisting Google workplace cloud infrastructure and therefore shares several Google standards and accreditations. All virtualized servers are run in the US.
Among others, Google workplace is certified by the following security compliance standards:
ISO 27001, ISO 27017, ISO 27018, SOC1, SOC2, SOC3
HireClix does not share customer data with third parties.
Administrative access to customer data is restricted to a small number of closely managed HireClix administrators.
Access to production systems and data follows the security standard of Least Privilege.
Access to affected data can be granted in accordance with the respective customer.