Privacy Policy

This Privacy Policy explains how [Insert legal entity name operating TriLinkr], operating TriLinkr, collects, uses, stores, shares, protects, and deletes personal data when you use the Platform as a Candidate, Employer, Consultant, business partner, admin user, visitor, or other authorised user.

This policy should be read together with the TriLinkr Terms of Use, Cookie Policy, and Data Retention Policy.

Depending on the workflow, TriLinkr may act as the entity deciding why and how personal data is processed for Platform operations, account management, recruitment workflows, security, support, analytics, and compliance. Employers or consultants may independently decide how they use candidate data outside the Platform, and they are responsible for their own legal obligations.

Directly from you when you register, complete onboarding, create a profile, upload files, post jobs, submit candidates, apply for jobs, contact support, or update account settings.

From Employers or Consultants who submit candidate or recruitment information through approved workflows.

Automatically through cookies, local storage, server logs, analytics tools, and security monitoring.

From service providers such as authentication, hosting, storage, email, payment, analytics, and communication providers.

From publicly available or business-provided sources where necessary to verify company details, job postings, or platform integrity.

Create, authenticate, verify, and manage user accounts and role-based access.

Enable candidate registration, resume upload, profile management, job applications, and recruitment workflows.

Enable employer company profiles, job postings, candidate review, application tracking, and hiring workflows.

Enable consultant job requests, consultant eligibility checks, candidate submissions, and consultant dashboards.

Operate admin dashboards, user management, analytics, moderation, support, and platform governance.

Send transactional emails, alerts, onboarding notices, security communications, and service updates.

Prevent fraud, spam, fake jobs, unauthorised access, scraping, abuse, data loss, and platform misuse.

Debug, maintain, improve, and secure the Platform and its infrastructure.

Comply with applicable legal, regulatory, tax, accounting, employment, consumer protection, and information technology obligations.

With consent where required, send marketing or newsletter communications and measure campaign performance.

We process personal data where there is a lawful basis to do so, including where you voluntarily provide data for a specified recruitment or account purpose, where processing is necessary to provide Platform services, where consent is required and obtained, where processing is necessary for compliance with law, and where processing is necessary for security, fraud prevention, or legitimate Platform operations consistent with applicable law.

Where processing is based on consent, you may withdraw consent through account settings, consent tools, unsubscribe links, or by contacting us. Withdrawal will not affect processing already completed before withdrawal and may limit our ability to provide certain Platform features.

We may share personal data as described below, subject to role-based access, purpose limitation, contractual safeguards, and applicable law.

TriLinkr may use third-party service providers for infrastructure and operations. Based on the current architecture, this may include Firebase/Google Cloud services for authentication, Firestore database, cloud storage, server-side file upload and signed URL access, Vercel for hosting/deployment, Resend or similar email providers for transactional emails, analytics/logging tools, and payment processors if paid features are enabled. The provider list may change as the Platform evolves.

Some service providers may process or store data in India or other jurisdictions. Where personal data is transferred outside India, we aim to use appropriate contractual, organisational, and technical safeguards and to comply with applicable cross-border transfer requirements.

We use cookies, local storage, session storage, and similar technologies for authentication, security, preferences, analytics, and service improvement. Please review the TriLinkr Cookie Policy for more details and choices.

We retain personal data only for as long as reasonably necessary for the purposes described in this policy, the Data Retention Policy, applicable law, dispute resolution, security, audit, accounting, and legitimate business needs. When data is no longer required, it will be deleted, anonymised, aggregated, or securely archived according to our retention practices.

We use reasonable technical and organisational measures designed to protect personal data, including role-based access control, server-side access checks, authentication controls, signed URL access for private files where applicable, database security rules, audit/logging, backups, and administrative controls. No system is completely secure, and users must also protect their own devices, passwords, OTPs, onboarding codes, and accounts.

Subject to applicable law and verification, you may have rights to:

Access information about the personal data we process about you.

Correct inaccurate or incomplete personal data.

Request deletion or erasure of personal data where applicable.

Withdraw consent where processing is based on consent.

Receive grievance redressal regarding data processing.

Nominate another individual to exercise your rights where applicable under law.

Complain to the appropriate data protection authority or board where permitted by law.

To exercise rights, contact us using the details in Section 19. We may need to verify your identity and account relationship before acting on a request. Some data may be retained where required for law, dispute, security, fraud prevention, audit, or legitimate business purposes.

Where a consultant submits candidate data, the consultant must confirm that the candidate has authorised the submission and related processing. Candidates may contact TriLinkr to request access, correction, deletion, or restriction of consultant-submitted information, subject to verification and applicable retention obligations.

The Platform is intended for users who are at least 18 years old. We do not knowingly permit children to create job-seeking, employer, consultant, or admin accounts. If we learn that a child has provided personal data without appropriate legal basis, we will take reasonable steps to delete or restrict that data.

TriLinkr may use filters, search, sorting, dashboards, analytics, and matching-related logic to help users discover jobs, candidates, applications, or workflow insights. These tools support recruitment workflows but do not guarantee suitability, selection, hiring, or employment outcome. Employers and authorised users remain responsible for final recruitment decisions.

You may request account deletion by contacting us or using account deletion features if available. Deletion may remove or disable profile access and may also affect applications, submitted candidates, dashboards, and historical records. We may retain limited information where required for legal, security, audit, accounting, dispute, fraud prevention, or legitimate business purposes. See the Data Retention Policy for details.

We may update this Privacy Policy from time to time. We will update the "Last updated" date and may notify users of material changes through the Platform, email, or another reasonable method. Continued use of the Platform after the updated policy takes effect means you acknowledge the updated policy.