Privacy Policy

What We Mean by Personal Information

For purposes of this Privacy Policy, “Personal Information” means any information from or about a person that identifies that person directly or makes that person identifiable when combined with other information from or about that person.

“Customer Data” (as used in the Terms) may include Personal Information. In most cases, when we process Customer Data, we do so on behalf of an organization (the Account Owner) in connection with providing the Services.

Information We Collect

Information You Provide to Us

When you use the Services or otherwise communicate with us, we collect information you provide to us directly. For example, we may collect information when you: (i) visit the Site; (ii) register for the Services or create an account (an “Account”); (iii) request a demo; (iv) subscribe to communications; (v) purchase a subscription or services; (vi) request technical support; (vii) use platform features including applicant tracking, customer relationship management, human resource management, contract management, time tracking, invoicing, reporting, or custom modules; (viii) access applicant portals or participate in AI-assisted interview processes; or (ix) otherwise communicate with us.

The information you provide may include, without limitation:

• Account and profile information (e.g., name, company name, email, phone number, physical address, role/title, login credentials)
• Billing information (e.g., billing contact details; payment-related data processed by our payment processors; transaction history)
• Support and communications (e.g., messages, tickets, emails, and related metadata)
• ATS / hiring-related information you submit through the Services (e.g., applicant name, contact information, resume/CV details, application status, interview scheduling details, AI-generated candidate evaluations, and related recruiting information), as provided by applicants or entered by the Account Owner and its users
• Employee and HR information submitted through human resource management features (e.g., employee records, leave and PTO records, onboarding documents, policy acknowledgements, performance reviews, asset assignments, and related employment data)
• Contract and agreement information managed through the platform (e.g., contract type, parties, terms, expiration dates, and related documentation)
• Time tracking and work management data (e.g., timesheet entries, project allocations, approval records)
• Financial and invoicing data (e.g., invoice details, accounts receivable information, payment status, revenue data)
• Custom module data submitted through modules created by the Account Owner using the platform's Custom Module Builder, which may include any category of data configured by the Account Owner
• Audio and video recordings submitted through or generated by the Services, including AI-assisted interview recordings and related AI-generated evaluations and transcripts
• Any other information you choose to submit through the Services

You can choose not to provide requested information; however, this may limit your ability to use or access certain features of the Services.

Information Collected Automatically

Most data we collect through the Site and Services is technical in nature and collected automatically via cookies, SDKs, log files, and similar technologies. This data may include:

• Device data (e.g., device type, browser type, OS, device identifiers)
• Usage data (e.g., pages viewed, features used, actions taken, time spent, clickstream data)
• Network and internet information (e.g., IP address, URLs, referring/exit pages)
• Security-related signals (e.g., authentication events, suspicious activity indicators)

Cookies and Similar Technologies

We may use cookies and similar technologies to operate and improve the Site and Services, such as to:

• keep you logged in,
• remember preferences,
• enable analytics and performance measurement,
• support security and fraud prevention.

You can control cookies through your browser settings. Disabling cookies may affect certain functionality.

Information You Post or Submit Through the Services

The Services may allow users to input content, data, or files across any Module, including applicant tracking, CRM, HRMS, contracts, time tracking, invoicing, reporting, and custom modules. Information submitted through the Services may be accessible to the Account Owner, its Admins, and other authorized users depending on permissions and role-based access controls configured within the platform.

How We Use Collected Information

We use the information we collect to:

1. Provide, maintain, and operate the Services (including authentication, account administration, customer support, and service communications)
2. Process transactions and manage subscriptions, billing, and payments (through payment processors)
3. Personalize and improve the Services, including performance monitoring, troubleshooting, and feature development
4. Provide platform functionality across all Modules, including applicant tracking, CRM, HRMS, contract management, time tracking, invoicing, reporting, and custom modules
5. Support AI Features, including generating assistive outputs, candidate evaluations, business analytics, strategic insights, and improving AI performance as described below
6. Communicate with you, including updates, security alerts, administrative messages, and marketing (where permitted by law and your choices)
7. Protect safety and integrity of the Services, including detecting fraud, abuse, and security incidents
8. Comply with legal obligations and enforce our Terms

AI, Analytics, and Aggregated/Anonymized Data

Certain features of the Services use artificial intelligence and automated analysis (“AI Features”). AI Features may process Customer Data, which may include Personal Information, to provide outputs and assistance within the Services. AI Features may include, without limitation, analytics engines, candidate evaluation tools, resume analysis, business intelligence agents, and other assistive technologies.

We may also create and use aggregated, anonymized, or de-identified data derived from Customer Data for analytics, benchmarking, product improvement, and development and optimization of AI Features, provided such data does not identify the Account Owner, its users, or any individual.

Opt-out:If the Account Owner wishes to opt out of the use of aggregated/anonymized/de-identified data for AI training/optimization, the Account Owner may request this by contacting us using the contact details in the “Contacting Us” section.

AI-Assisted Interviews and Audio/Video Data

Certain features of the Services may involve AI-assisted interviews or other functionality that captures, processes, or analyzes audio and video recordings. When such features are used:

• Audio and video recordings may be captured, stored, and processed to generate transcripts, evaluations, scores, and other AI-generated outputs
• AI-generated evaluations are assistive in nature and are not the sole basis for employment decisions
• The Account Owner is responsible for providing appropriate notice and obtaining any required consent from candidates or other individuals before using AI-assisted interview features, in accordance with applicable laws
• Recordings and associated data are treated as Customer Data and handled in accordance with this Privacy Policy and the Terms

Some jurisdictions may classify audio or video recordings, facial geometry, or voiceprints as biometric data subject to specific legal requirements. The Account Owner is solely responsible for determining whether its use of these features triggers biometric data obligations under applicable law and for complying with such obligations.

SMS, Call, & Mobile Communications Privacy

Protecting your mobile and communication privacy is important to us. Mobile information, including phone numbers, SMS and call opt-in data, consent records, and call permissions, will not be shared with any third parties or affiliates for marketing or promotional purposes. All categories of personal data explicitly exclude text messaging and calling opt-in data and consent, and this information will not be disclosed to any third party.

We may use your phone number to contact you via SMS messages and/or voice calls for the following purposes:

• Service-related notifications
• Transactional communications
• Marketing communications, only where permitted by applicable law (including the Telephone Consumer Protection Act (TCPA)) and with your explicit prior consent

Message and call frequency may vary based on your interactions with the Services. Standard messaging, data, and voice rates may apply depending on your mobile carrier and plan. Consent to receive SMS messages or phone calls is not a condition of purchase or use of the Services.

Opt-Out Rights

• SMS: You may opt out of receiving SMS messages at any time by replying STOP or QUIT to any message.
• Calls: You may opt out of marketing voice calls at any time by informing us during a call or by contacting us directly.

Once you opt out, you will no longer receive SMS messages or marketing calls unless you later choose to re-subscribe in accordance with applicable law.

How We Share Information

We may share information as follows:

Service Providers

We may share Personal Information with vendors and service providers who perform services on our behalf, such as:

• cloud hosting and data storage providers,
• customer support tools,
• analytics and monitoring providers,
• payment processors,
• security and fraud prevention tools.

These providers are permitted to use Personal Information only to perform services for us and are expected to protect it.

Third-Party Services and Integrations

If you enable Third-Party Services (e.g., integrations with accounting platforms, payment processors, or other tools), your data may be shared with those third parties as needed to enable the integration. Their processing is governed by their own terms and policies.

Legal and Safety

We may disclose information if we believe in good faith that disclosure is necessary to:

• comply with law or legal process (e.g., subpoenas, court orders),
• protect our rights, property, or safety, or that of users or the public,
• investigate or prevent suspected fraud, security issues, or violations of our Terms.

Business Transfers

If we are involved in a merger, acquisition, restructuring, bankruptcy, or sale of all or a portion of assets, information may be transferred as part of that transaction, consistent with this Privacy Policy.

Data Retention

We retain Personal Information for as long as necessary to provide the Services and for legitimate business purposes such as compliance, dispute resolution, and enforcement of agreements.

Account termination: Consistent with the Terms, upon termination or expiration of an Account, we will retain Customer Data for up to 30 days to allow for export or account reactivation, and then delete it, except as required by law or for legitimate archival, audit, or compliance purposes. Certain categories of data, such as employee records, contract documents, or financial records, may be subject to longer retention periods as required by applicable law.

Security

We use reasonable administrative, technical, and organizational measures designed to protect Personal Information from unauthorized access, use, alteration, and disclosure. However, no security system is impenetrable, and we cannot guarantee absolute security.

Data Breach Notification

In the event of a data breach affecting Personal Information, we will notify affected Account Owners and, where required, affected individuals and applicable regulatory authorities, in accordance with applicable data breach notification laws. Notification will be provided without unreasonable delay and will include, to the extent known, the nature of the breach, the categories of data affected, and steps being taken in response.

Do Not Track Signals

Some browsers transmit “do-not-track” signals. Because browser implementations vary, we currently do not respond to do-not-track signals.

Managing Your Information and Your Rights

Depending on where you live and applicable law, you may have rights to:

• request access to Personal Information we hold about you,
• request correction of inaccurate Personal Information,
• request deletion of Personal Information,
• object to or restrict certain processing,
• request portability of certain information.

If you are an employee/user of an Account Owner, many privacy requests may need to be handled through your organization's Admin, because your data may be controlled by the Account Owner.

To submit a request, contact us using the details in “Contacting Us.” We may need to verify your identity and/or authority before fulfilling requests.

California Privacy Notice

If you are a California resident, you may have certain rights under the California Consumer Privacy Act (CCPA), as amended by the CPRA, including:

• the right to know the categories and specific pieces of Personal Information collected,
• the right to delete Personal Information (subject to exceptions),
• the right to correct inaccurate Personal Information,
• the right to opt out of “sale” or “sharing” (as defined by law, if applicable),
• the right to non-discrimination for exercising privacy rights.

Sale/Sharing: We do not sell Personal Information in the traditional sense. If our practices change, we will update this Privacy Policy and provide any required opt-out mechanisms.

To exercise California privacy rights, contact us using the details below. We may verify your request.

International Users

We are based in the United States. If you access the Services from outside the U.S., your information may be transferred to and processed in the United States and other jurisdictions where we or our service providers operate. We take steps designed to ensure appropriate safeguards consistent with applicable laws.

European Economic Area, United Kingdom, and Switzerland

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, the following provisions apply in addition to the rights described above:

• Lawful basis for processing: We process Personal Information based on one or more lawful bases, including: performance of a contract (to provide the Services), legitimate interests (to operate, improve, and secure the Services), consent (where required, such as for marketing communications), and compliance with legal obligations.
• Data subject rights: In addition to the rights listed above, you may have the right to lodge a complaint with your local supervisory authority.
• International transfers: Where Personal Information is transferred outside the EEA, UK, or Switzerland, we rely on appropriate safeguards, such as Standard Contractual Clauses approved by the European Commission or other mechanisms recognized under applicable law.
• Data Processing Agreements: Account Owners that require a Data Processing Agreement in connection with GDPR or other data protection regulations may request one by contacting us using the details in “Contacting Us.”

Children's Privacy

The Services are not directed to children under the age of 13 (or under 16 in the EEA). We do not knowingly collect Personal Information from children. If we become aware that we have inadvertently collected Personal Information from a child, we will take reasonable steps to delete such information promptly. If you believe a child has provided us with Personal Information, please contact us using the details in “Contacting Us.”

Changes to this Privacy Policy

We may update this Privacy Policy from time to time. The “Last Updated” date indicates when it was last revised. Your continued use of the Services after any changes become effective constitutes your acceptance of the updated Privacy Policy.

Contacting Us

If you have questions or concerns about this Privacy Policy, or to submit a privacy request, contact:

REDYX TECHNOLOGIES CORP
23611 Liberty Street
Farmington, MI 48335, USA

Email: support@meghax.com