Privacy Policy

GDPR Compliance

1. Introduction

Protecting your data and that of your candidates is the top priority of cvdropper (Imergency Ltd). This policy details how we collect, process, and secure information.

2. Roles and Responsibilities

Under the General Data Protection Regulation (GDPR):

• The Client (Recruiter) acts as the Data Controller. They decide to collect CVs and assume legal responsibility toward the candidates.
• cvdropper (Imergency Ltd) acts as a Processor. We provide the technical tool and artificial intelligence to process this data upon the Client's instruction.

3. Collected Data

We collect two types of data:

• Client Data: Name, professional email, billing information (managed by LemonSqueezy), connection logs.
• Candidate Data: CVs (PDF/Word), cover letters, and data extracted by AI (skills, experience, contact details).

4. Analysis Technology (CVDropper Engine)

To ensure scoring relevance, cvdropper has developed its own semantic analysis engine. Our technology combines the power of latest-generation language models (LLM) with our proprietary algorithms, specifically calibrated for recruitment requirements.

AI Privacy: Your data is processed within our secure and isolated infrastructure. It is used exclusively for instant candidate analysis and is never used to train external models or made accessible to the public.

5. Data Sharing (Sub-processors)

We never sell your data. We share it only with the technical service providers necessary for the service to function:

• Scaleway (France): Hosting of servers and databases.
• Mailjet (Europe): Sending transactional emails.
• LemonSqueezy (USA): Payment management and billing.
• High-Performance Computing Infrastructure (Europe): Secure algorithmic processing of unstructured data.

6. Data Security and Transfer

Although our headquarters are located in Mauritius, we prioritize data storage in Europe. For necessary transfers outside the EU (to Mauritius or the USA), we rely on the European Commission's Standard Contractual Clauses (SCC) to guarantee a level of protection equivalent to GDPR.

7. Your Rights

You have the right to access, modify, port, and delete your data.

For any request regarding data deletion (right to be forgotten), please contact us at: contact@cvdropper.com. We commit to processing your request within 30 days.

8. Cookies

We only use 'essential' session cookies for the site's operation. No third-party advertising cookies are placed without your consent.