**Leadstar Privacy Policy - Last updated: October 17, 2024 **

At Leadstar, we are committed to protecting your privacy and ensuring your personal data is handled in compliance with the General Data Protection Regulation (GDPR), other applicable data protection laws, and international standards. This Privacy Policy outlines how we collect, use, and protect your personal information, regardless of where you reside.

1. Information We Collect

We collect personal data to provide you with the best possible experience on our platform. The types of information we collect include:

  • Personal Identification Information: Name, email address, phone number, and other contact details.
  • Career Information: Job preferences, skill assessments, work history, and professional qualifications.
  • Usage Data: Information about how you use our services, including IP address, device information, and browsing history on our platform.

2. How We Use Your Information

We process your personal data for the following purposes:

  • Service Provision: To provide personalized career coaching, recommendations, and tools for your professional development.
  • Platform Improvement: To analyze how users interact with our services and to make improvements based on usage data.
  • Communication: To send important updates, relevant notifications, and promotional offers, if you have provided consent.
  • Compliance: To fulfill our legal obligations and protect our platform from misuse, fraud, and security threats. We will not use your personal data for any purpose that is incompatible with the purposes described above.

3. Data Sharing with Third-Party Services

We use trusted third-party service providers to enhance and deliver our services. These partners may collect, store, and process your personal data on our behalf. The third-party services we use include, but are not limited to:

  • Mux: for video streaming and analytics.
  • Amplitude: for analyzing usage of our platform.
  • Segment: for managing and routing analytical data.
  • OpenAI: for providing advanced artificial intelligence features. These third parties are required to adhere to strict contractual obligations regarding data confidentiality and protection, in compliance with the GDPR and other applicable laws. They are only authorized to use your data as necessary to provide services on our behalf.

We encourage you to review the privacy policies of these third-party services to understand how they handle your personal data. We will never sell your data to third parties.

4. International Data Transfers

If your data is transferred outside the European Economic Area (EEA) or your country of residence, we will ensure it is protected by appropriate safeguards:

  • Standard Contractual Clauses (SCCs): For transfers to service providers outside the EEA, we use legally approved mechanisms like SCCs, ensuring your data is processed with the same level of protection as required by GDPR.
  • Adequacy Decisions: Where applicable, we rely on countries deemed to provide adequate protection by the European Commission.
  • Other Safeguards: We ensure any international data transfers comply with local data protection laws, including using additional safeguards where necessary.

5. Your Rights

As a user, you have several rights regarding your personal data, regardless of where you are located:

  • Right of Access: You may request a copy of the personal data we hold about you.
  • Right to Rectification: You can request corrections if your data is inaccurate or incomplete.
  • Right to Erasure ("Right to be Forgotten"): You may ask us to delete your personal data, subject to certain legal obligations.
  • Right to Restrict Processing: You can request that we limit how your data is processed in specific cases.
  • Right to Data Portability: You can request that we transfer your data to another service provider.
  • Right to Object: You can object to the processing of your data for direct marketing purposes or based on legitimate interests. To exercise your rights, please contact us at eva+support@leadstar.co.

6. Data Security

We take the security of your personal data seriously and implement appropriate technical and organizational measures to protect it from unauthorized access, loss, or alteration. Our security measures include:

  • Encryption: Your personal data is encrypted in transit and at rest.
  • Access Controls: Only authorized personnel have access to your personal data, and they are bound by confidentiality.
  • Monitoring: We regularly monitor our systems for vulnerabilities and have a response plan in place for any potential data breaches.

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, or as required by law. Once your data is no longer needed, we will securely delete or anonymize it.

8. Data Breach Notification

In the unlikely event of a data breach that may pose a risk to your rights and freedoms, we will notify you and the relevant data protection authorities as required by law. We will provide timely updates and guidance on any steps you may need to take to protect yourself.

9. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. If significant changes are made, we will notify you by email or through a prominent notice on our website. We encourage you to review this policy periodically.

10. Contact Us

If you have any questions or concerns regarding this Privacy Policy or how we handle your personal data, please contact us at:

Leadstar

eva+support@leadstar.co