Privacy Policy
Effective date: April 7, 2026 · Last updated: April 7, 2026
The short version
Privacy policies are long. Here is what matters most, in plain English.
| Topic | What we do |
|---|---|
| What we collect | Candidate names, emails, resumes, and consent records. Recruiter account information. Nothing more. |
| Why we collect it | To power the talent pipeline for the organization that operates this CRM. Not for advertising, not for resale. |
| Who sees it | Only recruiters with authorized workspace access. Candidate identity data is never shared with third parties. |
| AI and candidate data | Candidate PII is stripped before any AI model evaluates a resume. The AI scores skills only — never identity. |
| How long we keep it | Candidate data is retained until a deletion request is submitted or the candidate withdraws consent. Recruiters may also archive or delete records at any time. |
| Your rights | Candidates may request access, correction, or deletion of their data at any time. We respond within 5 business days. |
| Breach notification | We will notify affected individuals within 72 hours of discovering any breach affecting their data. |
1. Who we are
BlindScreen CRM is a candidate relationship management platform built for organizations operating in high-performance industries including aerospace, defense, energy, oil and gas, semiconductor, and life sciences. It is operated by the organization that deployed this instance of the software. This Privacy Policy governs the collection and processing of personal data by that organization through this platform.
BlindScreen CRM is built on the BlindScreen bias-free screening engine, which applies deterministic PII redaction before any AI evaluation of candidate data. This architecture is a core privacy protection, not an optional feature.
2. What information we collect
We collect only what is necessary to operate the talent community and recruiting pipeline.
Candidate identity data: First and last name, email address, phone number, location, and LinkedIn URL, provided voluntarily when a candidate joins the talent community or is added by a recruiter.
Resume content: Text pasted or uploaded by the candidate or ingested from a Workday bundle. Resume text is processed through the BlindScreen PII pipeline before any AI evaluation occurs.
Consent and compliance records: The date, method, and legal basis of consent for each candidate. This record is permanent and cannot be deleted, as it is required for regulatory compliance.
Event registration data: Name and email provided when registering for a recruiting event via QR code or registration link.
Recruiter account data: Name and email of recruiters who access the platform, managed through the platform's authentication system.
Usage data: Standard server logs including IP address and pages visited, used solely for security monitoring.
3. How we use your information
Candidate data is used exclusively to manage the talent pipeline of the organization operating this CRM. Specifically, it is used to maintain candidate profiles in the talent community, assign candidates to talent pools, invite candidates to recruiting events, send scheduled campaign communications, and evaluate candidate fit against open roles using the BlindScreen AI screening engine.
Candidate data is never used for advertising, sold or rented to third parties, used to train or improve any AI model, or shared with any organization other than the one operating this CRM instance.
4. The BlindScreen PII firewall
Before any AI model evaluates a candidate's resume, the BlindScreen engine applies a two-stage PII removal process. Stage 1 is deterministic: names, email addresses, phone numbers, URLs, and other identifiers are removed by rule-based logic that does not rely on AI. Stage 2 applies an LLM-based scrub to catch any remaining contextual identifiers that the deterministic stage may have missed.
The anonymized resume text and the candidate's identity record are stored in separate database tables and linked only by an internal UUID. The AI model that evaluates candidate fit never receives the candidate's name, contact information, or any other personally identifying data. Every candidate can view their UUID and the full record of what the AI evaluated on their Privacy & Consent profile tab.
5. Who we share your information with
We do not sell, rent, or share candidate personal information with third parties for their own purposes. The only service providers that may process candidate data are the cloud infrastructure provider hosting the application and database, and the AI language model provider used for resume evaluation. The AI provider's terms prohibit use of submitted data for model training.
We may disclose information if required by law, court order, or to protect the rights and safety of users, and will notify affected individuals in advance where legally permitted.
6. How long we keep your data
| Data type | Retention period |
|---|---|
| Candidate identity record | Retained until the candidate requests deletion or withdraws consent, or the organization deletes the record. |
| Anonymized evaluation record | Retained as long as the candidate profile is active. Deleted when the identity record is deleted. |
| Consent record | Retained permanently as required for regulatory compliance, even after other data is deleted. |
| Event registration data | Retained as part of the candidate profile per the policy above. |
| Recruiter account data | Retained while the recruiter has an active account. Deleted upon account termination. |
| Server logs | Retained for 90 days for security monitoring purposes. |
7. Your rights
Regardless of your location, you have the following rights with respect to your personal data held in this system. To exercise any of these rights, contact the organization operating this CRM at the address listed on the Contact page. We respond to all requests within 5 business days — faster than the 30-day window required by GDPR and the 45-day window required by CCPA.
Right to access: You may request a copy of all personal data we hold about you, including your UUID and a description of what the AI evaluated.
Right to deletion: You may request that we delete your personal data. We will complete this within 5 business days. Note that your consent record may be retained as required by law.
Right to correction: You may request correction of inaccurate personal data.
Right to portability: You may request your data in a machine-readable format.
Right to withdraw consent: You may withdraw your consent to data processing at any time. Withdrawal does not affect the lawfulness of processing that occurred before withdrawal.
8. Security
All data is encrypted in transit using TLS 1.3 and at rest using AES-256 encryption. Candidate identity data and anonymized evaluation data are stored in separate database tables and linked only by UUID. Access to candidate data is restricted to recruiters with authorized workspace access. For a full description of our security practices, see our Security Practices page.
9. Breach notification
In the event of a data breach affecting personal information, we will notify affected individuals by email within 72 hours of becoming aware of the breach. This notification will describe what data was affected, what we believe happened, and what steps we are taking. This commitment meets or exceeds the requirements of GDPR Article 33, CCPA, and applicable US state breach notification laws.
10. Cookies
We use a single session cookie to maintain recruiter login state. We do not use tracking cookies, advertising cookies, or third-party analytics cookies. We do not use Google Analytics, Facebook Pixel, or any similar tracking technology.
11. Changes to this policy
If we make material changes to this Privacy Policy, we will notify candidates and recruiters by email at least 14 days before the changes take effect. The effective date at the top of this page will be updated. Continued use of the platform after the effective date constitutes acceptance of the updated policy.
12. Contact
For any privacy-related questions, requests, or concerns, visit our Contact page. We respond to all privacy inquiries within 5 business days.