Effective date: 03/14/19
We gather various types of Personal Data from our users, as explained in more detail below, and we use this Personal Data internally in connection with our Services, including to personalize, provide, and improve our Services, to allow you to set up a user account and profile, to contact you and allow other users to contact you, to fulfill your requests for certain products and services, and to analyze how you use the Services. In certain cases, we may also share some Personal Data with third parties, but only as described below.
We do not knowingly collect or solicit Personal Data from anyone under the age of 16. If you are under 16, please do not attempt to register for the Services or send any Personal Data about yourself to us. If we learn that we have collected Personal Data from a child under age 16, we will delete that information as quickly as possible. If you believe that a child under 16 may have provided us Personal Data, please contact us at email@example.com.
We receive and store any information you knowingly provide to us. For example, through the registration process for the Interview Services and/or through your account settings, we may collect Personal Data, including without limitation, the following:
Certain information may be required to register with us or to take advantage of some of our features.
We may communicate with you if you’ve provided us the means to do so. For example, if you’ve given us your email address, we may email you about your use of the Services. We may also send you emails on behalf of our Partners regarding opportunities that may interest you. Also, we may receive a confirmation when you open an email from us. This confirmation helps us make our communications with you more interesting and improve our Services. If you do not want to receive communications from us, please indicate your preference by contacting us at firstname.lastname@example.org.
Whenever you interact with our Services, we automatically receive and record information on our server logs from your browser or device, which include the following:
We may use this data to customize content for you that we think may be useful to you, based on your usage patterns. We may also use it to improve the Services – for example, this data can tell us how often users use a particular feature of the Services, and we can use that knowledge to make the Services useful to as many users as possible.
We collect Personal Data about you when third parties, such as our business partners or service providers, provide us with Personal Data about you. Such third parties provide us with Personal Data about you, such as the following:
We collect Personal Data about you when you use our Services to interview for a position with a Prospective Employer. During the interview, we collect information about you, including but not limited to a video recording, photo, a coding exercise, updated resume information, answers to interview questions, and Personal Data provided during the interview.
We process Personal Data to operate, improve, understand and personalize our Services. For example, we use Personal Data to:
We will only process your Personal Data if we have a lawful basis for doing so. Lawful bases for processing include consent, contractual necessity and our “legitimate interests” or the legitimate interest of others, as further described below.
Examples of these legitimate interests include:
We may share your Personal Data with third parties as described in this below:
Prospective Employers and Recruiters: We may share your Personal Data with your Prospective Employers and your recruiters in connection with providing our Services to your Prospective Employers.
Information that’s been de-identified. We may de-identify your Personal Data so that you are not identified as an individual, and provide that information to our Partners. We may also provide aggregate statistics and other analytics information to our Partners, including your Prospective Employers and our other Partners, who may use such information to assist with their recruiting and hiring processes and gain insights about their applicant pools. However, except for when we share information about you with your Prospective Employer as part of the Interview Services, we never disclose aggregate usage or de-identified information to a Partner (or allow a Partner to collect such information) in a manner that would identify you as an individual.
Unless we tell you differently, our agents do not have any right to use the Personal Data we share with them beyond what is necessary to assist us.
User Profiles and Submissions: Certain user profile information, including your name, employment prospects, interview schedule, social media links/URLs (e.g. LinkedIn), resume information, and any content that you have uploaded to the Services, may be displayed to Karat and its agents, Prospective Employers and their agents, recruiters, and the interviewer who will conduct your interview to facilitate providing the Services.
Business Transfers: We may choose to buy or sell assets, and may share and/or transfer user information in connection with the evaluation of and entry into such transactions. Also, if we (or our assets) are acquired, or if we go out of business, enter bankruptcy, or go through some other change of control, Personal Data could be one of the assets transferred to or acquired by a third party, and we would share Personal Data with the party that is acquiring our assets. You acknowledge that such transfers may occur, and that any acquirer of us or our assets may continue to use your Personal Data as set forth in this policy.
Protection of Karat and Others: We reserve the right to access, read, preserve, and disclose any information that we believe is necessary to:
Consent: We also share information with third parties when you give us consent to do so.
Affiliates: we share Personal Data with our affiliates or other members of our corporate family.
Your account is protected by a password for your privacy and security. You must prevent unauthorized access to your account and Personal Data by selecting and protecting your password appropriately and limiting access to your computer or device and browser by signing off after you have finished accessing your account.
We seek to protect Personal Data using appropriate technical and organizational measures based on the type of Personal Data and applicable processing activity. Our information is stored on secure servers in the United States. Our security measures vary based on the sensitivity of the Personal Data we collect, process and store and the current state of technology. We also take measures to ensure subprocessors that process Personal Data on our behalf also have appropriate security controls in place.
We endeavor to protect the privacy of your account and other Personal Data we hold in our records, but unfortunately, we cannot guarantee complete security. Unauthorized entry or use, hardware or software failure, and other factors, may compromise the security of user information at any time. We take various steps to protect your information, including, but not limited to, the following:
Through your account settings, you may access, and, in some cases, edit or delete the following information you’ve provided to us:
The information you can view, update, and delete may change as the Services change. If you have any questions about viewing or updating information we have on file about you, please contact us at email@example.com.
Under California Civil Code Sections 1798.83-1798.84, California residents are entitled to contact us to prevent disclosure of Personal Data to third parties for such third parties’ direct marketing purposes; in order to submit such a request, please contact us at firstname.lastname@example.org.
If you are a resident of the EU, Switzerland, United Kingdom, Lichtenstein, Norway, or Iceland, you have certain rights with respect to your Personal Data, including those set forth below. For more information about these rights, or to submit a request, please email email@example.com. Please note that in some circumstances, we may not be able to fully comply with your request, such as if it is frivolous or extremely impractical, if it jeopardizes the rights of others, or if it is not required by law, but in those circumstances, we will still respond to notify you of such a decision. In some cases, we may also need to you to provide us with additional information, which may include Personal Data, if necessary to verify your identity and the nature of your request.
We retain Personal Data about you for as long as you have an open account with us or as otherwise necessary to provide you Services. In some cases we retain Personal Data for longer, if doing so is necessary to comply with our legal obligations, resolve disputes or collect fees owed, or is otherwise permitted or required by applicable law, rule or regulation. Afterwards, we retain some information in a depersonalized or aggregated form but not in a way that would identify you personally.
The Services are hosted and operated in the United States (“U.S.”) through Karat and its service providers, and if you do not reside in the U.S., laws in the U.S. may differ from the laws where you reside. By using the Services, you acknowledge that any Personal Data about you, regardless of whether provided by you or obtained from a third party, is being provided to Karat in the U.S. and will be hosted on U.S. servers, and you authorize Karat to transfer, store and process your information to and in the U.S., and possibly other countries. You hereby consent to the transfer of your data to the U.S. as set forth herein.
In compliance with the Privacy Shield Principles, Karat commits to resolve complaints about our collection or use of your personal information. Please contact us at firstname.lastname@example.org with any questions or concerns relating to the Privacy Shield. If you do not receive timely acknowledgment of your Privacy Shield-related complaint from us, or if we have not resolved your complaint, you may also resolve a Privacy Shield-related complaint through JAMS, an alternative dispute resolution provider located in the United States. You can visit https://www.jamsadr.com/file-an-eu-us-privacy-shield-or-safe-harbor-claim for more information or to file a complaint, at no cost to you. Under certain conditions, you may also be entitled to invoke binding arbitration for complaints not resolved by other means.