GDPR Compliance

Lawful basis support

Our platform is designed to support legitimate interest as the lawful basis for candidate outreach. We help you document your legitimate interest assessment and maintain records of processing activities.

Consent management

Built-in opt-out handling ensures that candidates who ask to stop being contacted are immediately flagged across your account. Opt-outs are permanent unless the candidate explicitly re-engages.

Data minimisation

We only process the candidate data necessary for the outreach purpose. Call recordings are automatically deleted after the retention period you set (default 90 days).

Right to access and erasure

You can export all data associated with a candidate at any time, and delete individual candidate records through the platform. Deletion is propagated across all systems including backups within 30 days.

Transparency

AI callers identify themselves as AI assistants at the start of every call. Candidates are informed that the call may be recorded. This meets transparency requirements under GDPR and Ofcom guidelines.

Data Protection Impact Assessment

We have completed a DPIA for our core processing activities and can share a summary with clients upon request to support their own compliance obligations.