Candidate Privacy Policy
Last updated: June 2025
Introduction
Thank you for your interest in joining Abusix. We respect your privacy and are committed to protecting your personal data. This Candidate Privacy Policy explains how we collect, use, and protect your personal information during the recruitment process.
This policy applies to all applicants who apply for a role with:
– Abusix, Inc. (United States)
– Abusix GmbH (Germany)
and through our international hiring arrangements, including where we use an Employer of Record (EOR).
Who We Are
Abusix is a network security SaaS company with global operations. We hire talent directly and via EOR arrangements in various countries.
Data Controllers:
– Abusix, Inc., One Boston Place, 201 Washington Street, Boston, MA 02108, USA
– Abusix GmbH, Roonstrasse 23a, 76137 Karlsruhe, Germany
For privacy-related inquiries, you can contact: [email protected]
What Data We Collect
We may collect and process the following categories of data:
– Name and contact information (email, phone, address)
– CV, resume, LinkedIn or other social media profiles
– Education, experience, skills, and qualifications
– Compensation expectations
– Notes and recordings from interviews or assessments
– Work authorization status
– Communications with us
– Any other information you provide voluntarily
We do not use automated decision-making although we might use AI-driven tools to screen candidates where allowed.
We do not intentionally collect sensitive personal data (e.g., racial or ethnic origin, health data), unless you provide it voluntarily and with your consent (e.g., for reasonable accommodation purposes).
How We Use Your Data
Your personal data is used to:
– Manage and evaluate your job application
– Communicate with you during the process
– Arrange interviews and assessments
– Verify references or conduct background checks (where required)
– Create a candidate profile for future opportunities, if you opt in
Legal Basis for Processing
We rely on the following legal bases under the GDPR:
– Pre-contractual necessity (Article 6(1)(b)) – to assess your application
– Legitimate interest (Article 6(1)(f)) – to improve recruitment processes or build a talent pool
– Consent (Article 6(1)(a)) – if we retain your data beyond the hiring process or collect sensitive data
Data Sharing and International Transfers
We may share all or some of your data with:
– Authorized internal teams involved in the hiring process
– Our recruitment software provider: Lever, Inc.
– Our video calling software provider: Zoom Communications, Inc.
– Our interview recording and transcription tool: Fathom Video, Inc.
– Our Employer of Record provider: OysterHR, Inc.
– Local EOR partners involved in onboarding
Some services (e.g., Lever) may store data in the United States. We apply appropriate safeguards, such as Standard Contractual Clauses (SCCs), to ensure a legally compliant level of protection.
Retention of Your Data
We retain your application data for:
– Unsuccessful applicants: up to 6 months after the conclusion of the recruitment process, unless local laws require otherwise
– Talent pool: up to 2 years, if you consent
You can withdraw your consent at any time by emailing [email protected].
Your Rights
Depending on your location and applicable law, you may have the right to:
– Access the data we hold about you
– Correct or update your data
– Request deletion of your data
– Object to or restrict our processing
– Lodge a complaint with a data protection authority
You can contact us at [email protected] to exercise any of your rights.
Changes to This Policy
We may update this privacy policy from time to time. Any changes will be posted on our careers site: https://abusix.com/careers/
