Data Security and Processing Policy

This policy aims to protect user data against unauthorized access, ensure compliance with the Indian IT Act 2000 and DPDP Act 2023, and enable secure AI evaluation, role matching, and subscription services.

• Identity Data – Name, email, phone, government ID, address
• Education Data – Qualifications, institutions, certifications
• Experience Data – Work history, skills, projects
• Company Data – Business details, hiring needs, organizational information
• Technical Data – IP address, device ID, usage logs
• AI Interaction Data – Mock test responses, interview recordings, compatibility scores

Users provide explicit consent at registration. Collection is limited to information necessary for platform services. Expert Interviewers must submit KYC documents as part of verification.

• Identity verification and KYC
• AI mock tests, interviews, and scoring
• Compatibility and risk analysis
• Fraud detection
• Secure delivery of subscription and enterprise services

All data is stored in secure servers with encryption at rest and in transit. Access is role-based. System logs and audit trails are maintained for accountability.

TALENSER may engage third-party vendors for processing, hosting, or analytics. Vendors are screened for compliance with applicable data protection standards. Data is shared under contractual obligations that require equivalent security and privacy safeguards.

Users have the right to:

• Access personal data and review KYC results
• Request corrections to inaccurate data
• Withdraw consent where applicable
• Request account deletion

To exercise these rights, contact support@talenser.com.

Active accounts are retained for service delivery. Inactive accounts are archived for a minimum of 5 years as required by applicable law. Deleted accounts are erased after the retention period.

• Encryption – TLS 1.2+ in transit, AES-256 at rest
• Access Control – Multi-level authentication, role-based access, least privilege principle
• Monitoring and Auditing – Continuous monitoring of access and usage
• Vulnerability Management – Regular assessments and timely remediation

In the event of a data breach, TALENSER will notify affected users within 72 hours, conduct root cause analysis, and report to authorities if required by law.

Data may be processed by AI systems for scoring and evaluation. Outputs are informational and assistive. Expert Interviewer input supplements AI evaluation where applicable.

Data may be transferred internationally where necessary for service delivery. TALENSER ensures compliance with applicable laws governing such transfers.

TALENSER reserves the right to update this policy at any time. Changes will be published on the platform and users will be notified where appropriate.