“”
Go to GDPR

Privacy Policy

HIRINGBRANCH INC. | PRIVACY POLICY

Last Updated: November 30, 2023

This privacy policy (the “Privacy Policy”) describes how LearningBranch Inc., dba HiringBranch(“LearningBranch”, “HiringBranch”,“we”, “us”, “our”) collects, uses, shares and stores Personal Datafrom your (“you”, “your”) access to and use of our website and its features (collectively, the “Services”). We are committed to respecting the confidentiality of Personal Data that we process in accordance with applicable privacy laws.

PLEASE READ THIS PRIVACY POLICY BEFORE ACCESSING AND USING OUR SERVICES. BYACCESSING AND USING OUR SERVICES, YOU CONSENT TO THE PROCESSING OF YOURPERSONAL DATA IN ACCORDANCE WITH THIS PRIVACY POLICY. IF YOU DO NOT AGREEWITH THIS PRIVACY POLICY, DO NOT ACCESS OR USE OUR SERVICES.

1. Definitions

“Personal Data” means any information relating to an identifiable individual, and includes information that, while on its own may not identify an individual, may identify an individual when combined with other information. Some examples of Personal Data include names, addresses, e-mail addresses, phone numbers, photographs and online identifiers.

“Process” or “Processing” means any action that a person can take with respect to Personal Data, including collecting, using, sharing, and altering Personal Data.

2. Why We Collect Personal Data

We may collect Personal Data in order to fulfill the following purposes (the “Purposes”):

(a) to provide our Services to you and operate our business activities, including without limitation:

  1. for our internal business administration and record keeping purposes;
  1. to troubleshoot issues;
  1. to resolve disputes;
  1. to enforce our rights arising from contracts entered into between yourself and us;
  1. to fulfil our contractual obligations with you;
  1. to fulfil our contractual obligations to third parties to whom you have provided your Personal Data;

(b) to respond to your communications with us;

(c) to contact you about updates to the Services, marketing and promotional offers, and service-related communications;

(d) for internal statistical and operational purposes to better understand how our Services are used;

(e) to improve our Services, including with respect to security and function; and

(f) to carry out any other purpose which is disclosed to you and for which you consent, or as is otherwise permitted by applicable law.

As a general rule, and subject to the other terms of this Privacy Policy, we will not collect Personal Data and disclose it to third parties for direct marketing purposes without your express consent.

3. What Personal Data We Collect

(a) General. Personal Data that we may collect through your use of the Services includes, without limitation:

  1. information that you provide to us when you use the Services, such as:
    (A) name and email address;
    (B) voice and image recordings;
    (C) recordings of answers to assessments provided through the Services;
    (D) if proctoring is enabled, snapshots of webcam to check for the presence of other people during an assessment;
  2. information about how you use the Services (e.g., your length of visits to our website, the time and frequency of your visits to our website, how you navigate around it, and how long you spend on particular pages); and
  3. information about your computer or mobile device, such as your Internet protocol (IP)address, device ID, browser and operating system type, resolution of your screen, language settings in your browser, referring URLs, and other technical information.

4. How We Collect Personal Data

(a) Collection through Services. We may collect Personal Data from you and any devices that you use when you:

  1. use our Services (e.g., through our use of cookies on our website, by you entering a form onour website, or by you otherwise contacting us)
  2. communicate with us; or
  3. subscribe to any mailing lists.

(b) Cookies. We may use cookies and similar technologies to track and analyze user activity in order to improve our Services and improve your experience. A cookie is a tiny element of data sent to your browser from a website. The cookie is stored on your hard drive so that your computer or other device may be recognized while you interact with the website.

Most web browsers allow you to modify your settings to notify you when you receive a cookie or to reject cookies entirely. Your computer also provides you with the ability to clear all cookies that have been stored onto your hard drive, should you wish to do so. However, please be aware that you may be unable to access certain parts of the Services if you block or disable our cookies. For more information about cookies, please see: https://www.allaboutcookies.org/.

(c) Web Analytics. We may use web analytics services (e.g., Google Analytics) in order to better understand the user experience on our website, including without limitation:

  1. how you reached our website;
  2. the website you came from;
  3. how long you stayed on our website;
  4. what pages you looked at;
  5. how many pages you looked at;
  6. what buttons you clicked;
  7. what browser you are using; and
  8. what device you are using.

Any use of analytics services by us will result in analytics providers collecting your Personal Data when you access and use our website. These third parties may set and access their own tracking technologies (including cookies and web beacons) and may otherwise collect or have access to your device identifier, site usage information, and related information about you.

If you do not wish to participate in web analytics, you may be able to download an opt-out browser add-on. Your web browser may also allow you to set a “Do Not Track” signal when you use online services. To learn more about “Do Not Track” signals, visit http://www.allaboutdnt.com/. You may also contact us at the “Contact Us” section below regarding any questions about web analytics services that we may use.

(d) Third Party Data. We may also obtain Personal Data from third parties. We protect such personal Data according to the practices described in this Privacy Policy, plus any additional restrictions imposed by the source of the data and applicable laws.

5. Grounds for Processing Personal Data

(a) General. We will not process your Personal Data without your consent, unless we are permitted or required to do so by applicable law. Your consent may be express or implied. The type of consent we may rely on in processing your Personal Data will vary based on your reasonable expectations, the sensitivity of your Personal Data, and the circumstances surrounding the collection of your Personal Data. Express consent is when you willingly agree (e.g., orally, in writing, or electronic agreement) to the processing of your Personal Data for particular purposes. Implied consent is when: (i) you do not expressly give consent, but you rather volunteer Personal Data for obvious purposes that a reasonable person would consider appropriate in the circumstances; or (ii) you are given notice and a reasonable opportunity to opt-out of your Personal Data being processed for specified purposes, and you do not opt-out.

(b) European Union. For individuals to whom the General Data Protection Regulation (“GDPR”)applies, we may process your Personal Data on the following grounds, in addition to any other grounds that may be available pursuant to applicable law:

  1. Consent. Where you have given us consent through a statement or clear affirmative action agreeing to the processing of your Personal Data. For instance, by submitting your Personal Data on a form on our website for a specified purpose.
  2. Contract. Where processing of Personal Data is necessary to perform a contract to which you are a party with us, or which you have agreed to enter with us.
  3. Legal Obligation. To comply with a legal obligation to which we are subject.
  4. Legitimate Interests. Where the processing of Personal Data is based on our legitimate interests, provided that these do not override your own interests and fundamental rights. We have legitimate interests in the following:
    to properly operate and deliver our Services to you;

    (A) to properly operate and deliver our Services to you;
    (B) to understand how users engage with our Services;
    (C) to improve our Services;
    (D) to market our Services; and
    (E) to provide customer service, including but not limited to, responding to inquiries and feedback.

(c) Consent. For certainty, by using our Services, you hereby consent to our processing of your Personal Data: (i) for the Purposes set out in this Privacy Policy; and (ii) as otherwise provided in this Privacy Policy.

6. Disclosure of Personal Data

(a) General. When we disclose your Personal Data to third parties, we take reasonable measures to ensure that these third parties implement appropriate technical and organizational measures in accordance with applicable privacy and data protection laws. We minimize the amount of Personal Data we disclose to what is directly relevant and necessary to accomplish the specified purpose.

(b) Service Providers. We may provide your Personal Data to third party service providers in order to help us achieve the Purposes. For example, we may use third party service providers to help us: (i)analyze usage of our Services; (ii) track the effectiveness of our marketing strategies and communications; (iii) assist with the prevention, detection and investigation of potentially illegal acts and security breaches; and (iv) collect and process error and crash reports and store data. These third parties are authorized to use your Personal Data only as necessary to provide these services to us.

(c) Corporate Transactions. We may also disclose or transfer your Personal Data to affiliates or third parties in the event of a proposed reorganization, merger, sale, joint venture, assignment, transfer or other disposition of all or any portion of our business, assets or equity, subject in each case to customary confidentiality agreements.

(d) Legal Disclosure. We may disclose Personal Data if we reasonably believe disclosure is in accordance with or required by any applicable law. This includes the disclosure of Personal Data where necessary for the establishment, exercise, or defense of legal claims, or as otherwise permitted by applicable law. We will have no liability associated with any such disclosures made in good faith.

(e) International Transfer and Storage. Your Personal Data may be stored and processed in any country where we have facilities or in which we engage third party service providers. By using our Services and otherwise providing us your Personal Data, you consent to the transfer of your Personal Data to countries outside of your country of residence, which may have different data protection rules than in your country. While such information is outside of the Canada, it is subject to the laws of the country in which it is held, and may be subject to disclosure to the governments, courts or law enforcement or regulatory agencies of such other country, pursuant to the laws of such country. If applicable, we will comply with the GDPR requirements providing adequate protection for the transfer of Personal Data from the European Economic Area to third country.

7. Retention of Personal Data

LearningBranch has a standard 90-day retention policy. Notwithstanding the foregoing, our data retention periods may vary depending on the country in which you receive Services and applicable law. In any event, we will retain your Personal Data only as long as necessary to: (a) fulfill the Purposes; (b) protect our legal rights; and (c) comply with applicable law. We will securely delete or anonymize the Personal Data once it is no longer necessary for us to hold it. We are not responsible for any liability or loss you experience as a result of such disposal of Personal Data. Subject to applicable law, if Personal Data is aggregated or anonymized so it is no longer associated with an identified or identifiable natural person, LearningBranch may indefinitely retain it and use it for any business purpose.

8. Security of Personal Data

(a) General. We protect your Personal Data using appropriate technical and organizational measures to reduce the risks of loss, misuse, unauthorized access, disclosure and alteration. However, no method of transmission over the Internet, or other method of storage, is 100% secure. Therefore, we cannot guarantee its absolute security. We encourage you to also take steps to protect Personal Data. For example:

  1. if you enter a section of our website that requires a password, you should log out when you leave;
  2. you should close all web browsers after using our website; and
  3. where we have given you (or where you have chosen) a username and password for access to certain parts of our website, you are responsible for keeping the username and password confidential.

All connections to LearningBranch data are encrypted with industry standard AES-256 bit encryption. This was established by the U.S. National Institute of Standards and Technology (NIST) and uses SHA-2 to ensure data integrity. LearningBranch also utilizes the following security standards:

  • multi-factor authentication;
  • full Secure Sockets Layer (SSL) 256-bit encryption;
  • AES 256-bit encryption for stored data; and
  • Secure Socket Shell (SSH) keys for transmitted data.

(b) Hardware and Infrastructure Security.

  1. LearningBranch stores all data in data centers that are SSAE 16-audited. These data centers include state-of-the-art physical and environmental access controls and safety features including: 24/7 professional security staff, video surveillance, intrusion detection systems ,fire detection and suppression, redundant electrical power systems, and uninterruptible power supply (UPS).
  2. LearningBranch is deployed on Amazon Web Services (AWS). Our infrastructure is hosted and managed within Amazon’s secure data centers utilizing AWS technology. As of the date of this Privacy Policy, Amazon Web Service data centers are accredited under:

    (A) SOC1, SOC2, SOC3 SSAE 16/ISAE 3402 Servers;
    (B) ISO 27001;
    (C) PCI Level 1;
    (D) Sarbanes-Oxley (SOX); and
    (E) FISMA.

(c) Access Control. Authorized LearningBranch employees have access to only the resources they require to perform their duties. LearningBranch uses multi-factor authentication along with login credential and passwords to access the resources. These credentials are always transmitted encrypted using HTTPS protocol.

(d) Backup Process. LearningBranch fully automates the backup process, and all backups are fully encrypted and stored on encrypted volumes. The backup process includes daily backups and hourly incremental snapshots.

(e) Business Continuity and Disaster Recovery Plan. LearningBranch has developed its Business Continuity and Disaster Recovery Plan to (a) safeguard the uninterrupted use of data systems and data networks that are important to us and our clients, (b) prevent unauthorized use of data and data systems, the unintentional or deliberate destruction or distortion of data, and (c) minimize damage caused by any such activities. We also endeavor to safeguard operation data processing at normal time, to deal with threats that might result in the suspension of uses, and to quickly recover from such situations. For more information on our Business Continuity and Disaster Recovery Plan, please contact us at the “Contact Us” section below.

9. Rights Relating to Personal Data

(a) General. You have certain rights relating to your Personal Data, subject to applicable law in each instance:

  1. Right to be Informed. To know how your Personal Data is collected, how it is used, and how it is disclosed and stored. This further includes:

    (A) Right to Withdraw Consent. To withdraw your consent to the processing of your Personal Data at any time. Please be advised that withdrawing your consent to the processing of Personal Data may impact the provision of Services. For further information on this, please contact our Privacy Officer as provided in the “Contact Us” section below.

    (B) Right to Make a Complaint. To make a complaint about the processing of your Personal Data.
  2. Right to Access. To receive a copy of your Personal Data.
  3. Right to Rectification. To request correction of your Personal Data

(b) European Union. If you are an individual to whom the GDPR applies, then you have the following additional rights relating to your Personal Data, subject to applicable law in each instance:

  1. Right to Erasure. To request the deletion of Personal Data when: (A) you believe it is no longer necessary for the purposes collected; (B) you withdraw your consent or object to the processing of your Personal Data; or (C) your Personal Data was unlawfully processed.
  2. Right to Restriction of Processing. To restrict the processing of Personal Data if you dispute its accuracy or object to its processing.
  3. Right to Portability. To request that your Personal Data be transferred to another organization.
  4. Right to Information about Automated Decision Making. To receive information about the basis of any automatic decision making (e.g., algorithms).
  5. Right not to be Subject to Automated Decision Making. To not be subject to decisions based solely on automated processing, unless this is necessary pursuant to a contract between us.
  6. Right to Object to Processing Activities. To object to the processing of your Personal Databased on our legitimate interests.
  7. Right to Object to Processing Activities. To object to the processing of your Personal Databased on our legitimate interests.

If you want to learn more about any rights under the GDPR, you can visit the European Commission’s page on Data Protection at https://ec.europa.eu/info/law/law-topic/data-protection_en.

(c) Exercising Your Rights. If you would like to exercise your any of your Personal Data rights, please refer to our “Contact Us” section below. When doing so, please tell us which right you wish to exercise and provide us with contact information to direct our response. Response procedures may vary depending on the laws applicable to you. Your use of the Services may be affected depending on the nature of the rights you seek to exercise. The various rights are not absolute and may be subject to certain exceptions or qualifications under applicable law.

Subject to applicable law: (i) we may verify your identity before fulfilling requests to exercise any rights; and (ii) we may request additional information if we cannot initially verify your identity, we require such additional information in order to properly assess your request. Any Personal Data you disclose to us for purposes of verifying your identity and/or exercising your rights will solely be used for the purpose of verification and processing of your request

10. Communications with Us

To opt-out of receiving certain communications from us through your use of the Services (the “Communications”), you may either contact us as provided in the “Contact Us” section below, or, if applicable, click “Unsubscribe” if such function is supported in the particular Communication. Please note that certain Communications may be necessary for the proper functioning and use of the Services, and opting out of those Communications may prevent the proper use of the Services.

11. Personal Data About Other Individuals

Before providing any Personal Data on behalf of another individual, you confirm that you have received all necessary authorizations to do so.

12. Third Party Links

The Services may contain links to third party websites or applications that are not owned, maintained or operated by LearningBranch. Any such links are provided solely as a convenience and not as an endorsement by LearningBranch. LearningBranch is not responsible for the privacy practices employed by any third party, and disclaims any and all liability in connection with same. These third parties may have the ability to track your use of their site and services through their own cookies and web beacons, or may otherwise collect or solicit Personal Data from you. Please read all privacy settings and notices when accessing any third party websites or applications.

13. Changes to your Personal Data

It is important that the Personal Data we hold about you is accurate and current. Please keep us informed if your Personal Data changes during your working relationship with us.

14. Changes to Our Privacy Policy

We may modify or update this Privacy Policy from time to time in our sole discretion, so please review it periodically. Unless otherwise indicated, any changes to this Privacy Policy will apply immediately up on posting to our website. Your continued use of the Services after any changes to the Privacy Policy will be conclusively deemed as your acceptance of the Privacy Policy as amended.

15. Contact Us

If you have any questions about this Privacy Policy or wish to exercise any applicable rights, you may contact our Privacy Officer at privacy@hiringbranch.com.

European Union. 

For individuals to whom the General Data Protection Regulation (“GDPR”) applies, we may process your Personal Data on the following grounds, in addition to any other grounds that may be available pursuant to applicable law:

  1. Consent.  Where you have given us consent through a statement or clear affirmative action agreeing to the processing of your Personal Data. For instance, by submitting your Personal Data on a form on our website for a specified purpose.  
  1. Contract.  Where processing of Personal Data is necessary to perform a contract to which you are a party with us, or which you have agreed to enter with us.
  1. Legal Obligation.  To comply with a legal obligation to which we are subject.
  1. Legitimate Interests.  Where the processing of Personal Data is based on our legitimate interests, provided that these do not override your own interests and fundamental rights. We have legitimate interests in the following: 
  1. to properly operate and deliver our Services to you; 
  1. to understand how users engage with our Services;
  1. to improve our Services;
  1. to market our Services; and
  1. to provide customer service, including but not limited to, responding to inquiries and feedback.
  1. Consent.  For certainty, by using our Services, you hereby consent to our processing of your Personal Data: (i) for the Purposes set out in this Privacy Policy; and (ii) as otherwise provided in this Privacy Policy.

6. Disclosure of Personal Data

General. 

When we disclose your Personal Data to third parties, we take reasonable measures to ensure that these third parties implement appropriate technical and organizational measures in accordance with applicable privacy and data protection laws. We minimize the amount of Personal Data we disclose to what is directly relevant and necessary to accomplish the specified purpose.

Service Providers. 

We may provide your Personal Data to third party service providers in order to help us achieve the Purposes. For example, we may use third party service providers to help us: (i) analyze usage of our Services; (ii) track the effectiveness of our marketing strategies and communications; (iii) assist with the prevention, detection and investigation of potentially illegal acts and security breaches; and (iv) collect and process error and crash reports and store data. These third parties are authorized to use your Personal Data only as necessary to provide these services to us.

Corporate Transactions. 

We may also disclose or transfer your Personal Data to affiliates or third parties in the event of a proposed reorganization, merger, sale, joint venture, assignment, transfer or other disposition of all or any portion of our business, assets or equity, subject in each case to customary confidentiality agreements.

Legal Disclosure. 

We may disclose Personal Data if we reasonably believe disclosure is in accordance with or required by any applicable law. This includes the disclosure of Personal Data where necessary for the establishment, exercise, or defense of legal claims, or as otherwise permitted by applicable law. We will have no liability associated with any such disclosures made in good faith. 

International Transfer and Storage. 

Your Personal Data may be stored and processed in any country where we have facilities or in which we engage third party service providers. By using our Services and otherwise providing us your Personal Data, you consent to the transfer of your Personal Data to countries outside of your country of residence, which may have different data protection rules than in your country. While such information is outside of the Canada, it is subject to the laws of the country in which it is held, and may be subject to disclosure to the governments, courts or law enforcement or regulatory agencies of such other country, pursuant to the laws of such country. If applicable, we will comply with the GDPR requirements providing adequate protection for the transfer of Personal Data from the European Economic Area to third country.

7. Retention of Personal Data

Our data retention periods may vary depending on the country in which you receive Services and applicable law. We will retain your Personal Data only as long as necessary to: (a) fulfill the Purposes; (b) protect our legal rights; and (c) comply with applicable law. We will securely delete or anonymize the Personal Data once it is no longer necessary for us to hold it. We are not responsible for any liability or loss you experience as a result of such disposal of Personal Data. Subject to applicable law, if Personal Data is aggregated or anonymized so it is no longer associated with an identified or identifiable natural person, the Company may indefinitely retain it and use it for any business purpose.

8. Security of Personal Data

We protect your Personal Data using appropriate technical and organizational measures to reduce the risks of loss, misuse, unauthorized access, disclosure and alteration. However, no method of transmission over the Internet, or other method of storage, is 100% secure. Therefore, we cannot guarantee its absolute security. We encourage you to also take steps to protect Personal Data by, for example, closing all web browsers after using our website.

9. Rights Relating to Personal Data

General. 

You have certain rights relating to your Personal Data, subject to applicable law in each instance:

Right to be Informed. 

To know how your Personal Data is collected, how it is used, and how it is disclosed and stored. This further includes:

  1. Right to Withdraw Consent.  To withdraw your consent to the processing of your Personal Data at any time. Please be advised that withdrawing your consent to the processing of Personal Data may impact the provision of Services. For further information on this, please contact our Privacy Officer as provided in the “Contact Us” section below.
  1. Right to Make a Complaint.  To make a complaint about the processing of your Personal Data.
Right to Access. 

To receive a copy of your Personal Data.

Right to Rectification. 

To request correction of your Personal Data. 

European Union. 

If you are an individual to whom the GDPR applies, then you have the following additional rights relating to your Personal Data, subject to applicable law in each instance:

  1. Right to Erasure.  To request the deletion of Personal Data when: (A) you believe it is no longer necessary for the purposes collected; (B) you withdraw your consent or object to the processing of your Personal Data; or (C) your Personal Data was unlawfully processed. 
  1. Right to Restriction of Processing.  To restrict the processing of Personal Data if you dispute its accuracy or object to its processing.
  1. Right to Portability.  To request that your Personal Data be transferred to another organization. 
  1. Right to Information about Automated Decision Making.  To receive information about the basis of any automatic decision making (e.g., algorithms).  
  1. Right not to be Subject to Automated Decision Making.  To not be subject to decisions based solely on automated processing, unless this is necessary pursuant to a contract between us. 
  1. Right to Object to Processing Activities.  To object to the processing of your Personal Data based on our legitimate interests. 

If you want to learn more about any rights under the GDPR, you can visit the European Commission’s page on Data Protection at https://ec.europa.eu/info/law/law-topic/data-protection_en.

Exercising Your Rights. 

If you would like to exercise your any of your Personal Data rights, please refer to our “Contact Us” section below. When doing so, please tell us which right you wish to exercise and provide us with contact information to direct our response. Response procedures may vary depending on the laws applicable to you. Your use of the Services may be affected depending on the nature of the rights you seek to exercise.

Subject to applicable law: (i) we may verify your identity before fulfilling requests to exercise any rights; and (ii) we may request additional information if we cannot initially verify your identity, or if we require such additional information in order to properly assess your request. Any Personal Data you disclose to us for purposes of verifying your identity and/or exercising your rights will solely be used for the purpose of verification and processing of your request.

10. Communications with Us

To opt-out of receiving certain communications from us through your use of the Services (the “Communications”), you may either contact us as provided in the “Contact Us” section below, or, if applicable, click “Unsubscribe” if such function is supported in the particular Communication. Please note that certain Communications may be necessary for the proper functioning and use of the Services, and opting out of those Communications may prevent the proper use of the Services.

11. Personal Data About Other Individuals

Before providing any Personal Data on behalf of another person, you confirm that you have received all necessary authorizations to do so.

12. Third Party Links

The Services may contain links to third party websites or applications that are not owned, maintained or operated by the Company. Any such links are provided solely as a convenience and not as an endorsement by the Company. The Company is not responsible for the privacy practices employed by any third party, and disclaims any and all liability in connection with same. These third parties may have the ability to track your use of their site and services through their own cookies and web beacons, or may otherwise collect or solicit Personal Data from you. Please read all privacy settings and notices when accessing any third party websites or applications.

13. Changes to Our Privacy Policy

We may modify or update this Privacy Policy from time to time in our sole discretion, so please review it periodically. Unless otherwise indicated, any changes to this Privacy Policy will apply immediately upon posting to our website. Your continued use of the Services after any changes to the Privacy Policy will be conclusively deemed as your acceptance of the Privacy Policy as amended.

14. Contact Us

If you have any questions about this Privacy Policy or wish to exercise any applicable rights, you may contact our Privacy Officer at privacy@hiringbranch.com.