Recruitment privacy notice

Published September 1st, 2025

Recruitment privacy notice 

Tines and our affiliates (“Tines”, “we”, “us” or “our”) are committed to protecting your privacy. This Recruitment Privacy Notice (“Notice”) outlines how we collect, use and disclose your personal information (“Personal Data” or “Personal Information” in some regions) during the recruitment process for employment or internship opportunities through any method or platform (collectively, the “Sites”).

If you have any questions about this Notice, please contact us using this form or reach out to legal@tines.io.

1. Who this notice applies to 

This Notice applies to individuals (“you”, “your” or “the Applicant”) who engage with Tines during the recruitment process.

Additional Rights for EEA, UK and California Residents

• If you are located in the EEA, UK or Switzerland, see "Your Privacy Rights” below for more information.

• If you are a California resident, see “California Privacy Rights Supplement” below for more information.

2. Personal data we collect 

We collect Personal Data to assess and process your application. Some of this data is provided directly by you, while other information may come from third parties or be collected automatically through our Sites.

Data You Provide Directly

This may include:

• Contact details and preferences

• Resume/CV, cover letter, academic transcripts, and employment references

• Educational and professional background

• Compensation expectations

• Work authorization/visa status

• Requests for accommodations (e.g., disability-related)

Sensitive Personal Data

This may include:

• Racial or ethnic origin

• Political or religious beliefs

• Health information

• Sexual orientation

• Trade union membership

• Government-issued IDs or criminal background

We only collect Sensitive Personal Data where permitted or required by law and, where necessary, with your explicit consent.

From Third Parties

We may receive information from:

• Background check providers

• Employment reference contacts

• Public sources like LinkedIn

• Recruitment service providers

Automatically Collected Data

We may collect data through our Sites, such as from visits to our Careers page. See our Cookies policy for more details.

3. How we use your personal data 

We use your Personal Data in our application and recruitment process for purposes including:

• Assessing your qualifications, skills, and interests against our career opportunities;

• Verifying the information you or others provide and carrying out reference checks or conducting background checks (where applicable);

• Facilitating the recruiting and interview process;

• Preparing an offer letter, if your application is successful;

• Managing and improving our recruiting processes;

• Analyzing hiring metrics (e.g. time-to-hire);

• Meeting legal and regulatory obligations;

• Identifying future opportunities that may match your background; and

• Where we have identified you as a potential candidate from information that we've collected from public sources, in order to suggest suitable opportunities for you at Tines.

If you are offered and accept employment with Tines, the information collected during the application and recruitment process will become part of your employment record.

4. Personal data sharing 

We do not sell your Personal Data. We share it only as necessary, including with:

• Tines affiliates and subsidiaries for recruitment-related purposes

• Service providers assisting with recruitment (e.g., consultants, interview facilitators, background check vendors)

• Government or regulatory authorities as required by law

• Third parties during business transactions, such as mergers or acquisitions

• Others with your explicit consent

5. Legal bases for processing your personal data 

Our legal bases for processing your Personal Data in the UK, EEA and Switzerland, in the ways described in this Notice, include:

• Pre-contractual necessity: To evaluate and potentially enter into an employment contract with you

• Legal obligations: To comply with applicable laws

• Legitimate interests: In managing our recruitment process and identifying future talent

• Vital interests: To protect you or others

• Consent: Where required, especially for Sensitive Personal Data

6. Your privacy rights 

You may have certain legal rights under applicable law depending on your location. For example, the European Union's (“EU”) General Data Protection Regulation applicable to EU residents' Personal Data, or the California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act of 2021 (“CCPA”). This includes the right to:

• Access, update, or delete your Personal Data

• Object to or restrict certain processing

• Data portability

• Withdraw consent at any time

To exercise your rights, submit a request here.

We may deny requests only as permitted by law (e.g., if impacts the privacy of others).

Residents of the UK or EEA may also file a complaint with their local data protection authority.

7. International transfers of your personal data 

As a global company, Tines may transfer your Personal Data outside your country of residence. In such cases, we implement appropriate safeguards, such as:

• Standard Contractual Clauses approved by the European Commission

• Adequacy decisions, where applicable

Our third-party partners and service providers are contractually required to implement similar protections.

8. Data security 

We maintain appropriate technical and organizational measures to protect Personal Data from accidental or unlawful destruction, loss, alteration, unauthorized disclosure, and access. Our employees with access to Personal Data are required to keep that information confidential and secure.

9. Our retention of your personal data 

We retain your Personal Data for as long as necessary to:

• Fulfill recruitment purposes

• Consider you for future opportunities

• Comply with legal obligations

• Protect ourselves from legal claims

If hired, your data will be retained as part of your employment record. You can request deletion or updates by submitting a request via this form. We may retain limited data where legally required.

10. Your responsibilities 

You are responsible for the accuracy and lawfulness of the information you provide. Please ensure your data:

• Is complete, true, and not misleading

• Does not contain illegal or infringing content

• Does not introduce malicious code

If you provide information about third parties (e.g., referees), you must have their consent and inform them of this Notice.

11. Changes to this notice 

We may update this Notice periodically in response to legal, technical, or business changes. When we update this Notice, we will note the date of its most recent revision in the footer. If we make material changes to this Notice, we may take appropriate measures to inform you in a manner that is consistent with the significance of the changes we make. We encourage you to review this Notice regularly.

12. How to contact us 

If you have any questions or concerns about this Notice or our data handling practices, please contact legal@tines.io.

CALIFORNIA PRIVACY RIGHTS SUPPLEMENT 

This California Privacy Rights Supplement (“Supplement”) explains how Tines collects, uses, and shares personal information about California residents, as required by the California Consumer Privacy Act of 2018 (CCPA), as amended by the California Privacy Rights Act of 2020 (CPRA), and California’s “Shine the Light” law (Civil Code §1798.83).

This Supplement expands upon our Recruitment Privacy Notice and applies only to individuals residing in California.

1. Overview

This Supplement provides a summary of:

• Categories of Personal Information we have collected in the past 12 months

• Sources of that information

• Purposes for collection and disclosure

• Third parties with whom we may share Personal Information

• Confirmation that Tines does not sell or share Personal Information for cross-context behavioral advertising

• Your privacy rights as a California resident and how to exercise them

2. Categories of personal information collected

In the past 12 months, we may have collected the following categories of Personal Information:

• Identifiers (e.g., name, postal address, email address)

• Personal information as defined in California Civil Code §1798.80(e) (e.g., employment history, contact information)

• Protected classification characteristics under California or federal law (e.g., gender, marital status)

• Professional or employment-related information

• Education information

• Geolocation data (e.g., approximate location derived from IP address)

• Audio, electronic, visual, or similar information (e.g., recorded video or audio interviews)

3. Sources of personal information

We collect Personal Information from the following sources:

• Directly from you (e.g., through your application or communications with us)

• Automatically through your use of our Sites

• From third parties (e.g., background check providers, professional networking platforms, or recruitment services)

4. What is not considered personal information

For the purposes of this Supplement, “Personal Information” does not include:

• Publicly available information from government records

• De-identified or aggregated data that cannot reasonably be linked to you

• Information covered by other laws, including:

  • HIPAA/CMIA (health information)

  • FCRA, GLBA, or FIPA (financial information)

  • Driver’s Privacy Protection Act (vehicle and driving data)

Note: This Supplement also does not apply to Personal Information we process as a service provider on behalf of our business customers.

5. Purposes for collecting personal information

We use your Personal Information for the purposes described in our Recruitment Privacy Notice, including:

• Processing your application and managing the recruitment process

• Providing and improving our services

• Responding to support inquiries

• Complying with legal obligations

• Ensuring the security and integrity of our systems and operations

• Sending marketing communications (if you’ve opted in)

Tines does not sell or share your Personal Information for cross-context behavioral advertising.

6. Disclosure of personal information

We may disclose Personal Information to the following categories of recipients:

• Service providers and vendors assisting with recruiting, analytics, and operational support

• Legal and regulatory authorities, when required by law or in response to lawful requests

• Affiliates or business partners, in the context of our business operations

• Parties to corporate transactions, such as a merger, acquisition, or asset sale

• Other parties, where you have given consent

7. Your California privacy rights

If you are a California resident, you may have the following rights under the CCPA/CPRA:

• Right to Know: Request details about the Personal Information we collect, use, or disclose

• Right to Correct: Request correction of inaccurate Personal Information

• Right to Delete: Request deletion of Personal Information, subject to certain exceptions

• Right to Opt-Out of sale or sharing of your Personal Information (though we do not currently sell or share it)

• Right to Non-Discrimination: You will not be discriminated against for exercising your rights

8. How to exercise your rights

To make a request, you can:

• Email: legal@tines.io, or

• Visit: this page

We may verify your identity before processing any request and will respond within 45 days. If we need additional time or cannot fulfill your request due to legal or security reasons, we will notify you promptly.