Privacy Policy - Intaqe

‍

Last updated: 10 March 2026

‍

1. Introduction

‍

This Privacy Policy explains how m2m jobs ("we", "us", or "our") collects, uses, and protects personal data when individuals interact with Intaqe, our AI-powered recruiting platform.

‍

Intaqe is a software platform developed and operated by m2m jobs, providing conversational infrastructure for hiring teams and recruitment workflows.

‍

When candidates or users interact with Intaqe, personal data may be processed in accordance with this Privacy Policy.

‍

We process personal data in compliance with the General Data Protection Regulation and other applicable European data protection laws. Where artificial intelligence is used, Intaqe is designed to align with transparency and human oversight requirements introduced by the **European Union Artificial Intelligence Act.

‍

2. Roles and Responsibilities

‍

In most cases:

• Our customers (employers using Intaqe) act as the Data Controller
• m2m jobs acts as the Data Processor

The Data Controller determines:

• which candidate data is collected
• which screening questions are asked
• how candidate information is evaluated
• how hiring decisions are made

Intaqe processes personal data only on behalf of the Data Controller and according to their instructions.

‍

3. Data We Process

‍

We process only data that is necessary to provide our services. This may include:

‍Account and business information

• Name
• Email address
• Company name
• Account credentials

Candidate-provided information

• Job application information
• Responses submitted through interviews or screening flows
• CV or resume data (if provided)

Evaluation outputs

• Structured summaries or evaluation outputs generated based on customer-defined criteria

Communication data

• Chat or voice interaction transcripts where applicable
• Interaction timestamps and session data

Technical data

• IP address
• Browser/device information
• System logs for security and reliability

We do not intentionally process special categories of personal data (such as health data or religious beliefs) unless voluntarily provided and required for the hiring process.

‍

4. Legal Basis for Processing

‍

Personal data is processed under the following legal bases under the General Data Protection Regulation:

‍

Contractual necessity
To deliver and operate the Intaqe platform.

‍

Legitimate interest
To maintain platform security, prevent misuse, and improve system performance.

‍

Consent
Where required by law, particularly when candidates interact directly with automated intake or screening systems.

‍

Customers remain responsible for determining the appropriate legal basis for candidate data processing.

‍

5. Purpose Limitation & Data Minimization

‍

Personal data is:

• collected only for recruitment-related purposes
• limited to data necessary for candidate intake and evaluation
• not reused for unrelated or secondary purposes

We apply data minimization principles when designing our systems.

‍

6. AI Use & EU AI Act Compliance

‍

Intaqe uses artificial intelligence to support recruitment workflows such as:

• conducting conversational candidate screening
• organizing candidate responses
• generating structured summaries for recruiters

In line with the European Union Artificial Intelligence Act:

• Intaqe functions as a decision-support system, not an autonomous decision-maker
• Final hiring decisions always remain with human recruiters
• Evaluation criteria are defined by customers, not inferred by the system
• AI outputs are designed to be functionally explainable and auditable

We implement safeguards to reduce bias and help prevent unlawful or discriminatory outcomes.

‍

7. AI Training & Data Usage

‍

• Candidate and customer data is never used to train public or third-party AI models.
• Personal data is processed only to deliver the contracted service.
• Where system improvements are performed, they rely on aggregated and anonymized data where possible.

‍

8. Data Sharing & Subprocessors

‍

We share personal data only with trusted subprocessors necessary to operate the platform, such as:

• hosting and cloud infrastructure providers
• communication infrastructure providers
• security and monitoring services

All subprocessors are bound by GDPR-compliant Data Processing Agreements.

We do not sell personal data to third parties.

‍

9. International Data Transfers

‍

Where personal data is transferred outside the European Economic Area, we ensure appropriate safeguards are implemented, such as Standard Contractual Clauses (SCCs) or equivalent legal mechanisms.

‍

10. Data Retention

‍

Personal data is retained only as long as necessary to fulfill the purposes described in this policy.

Retention periods may depend on:

• instructions from our customers (Data Controllers)
• contractual obligations
• legal requirements

After the applicable retention period, data is deleted. AI interaction logs (including model usage and interview input criteria) are retained for the same period as the associated candidate data, in accordance with applicable legal requirements under the EU AI Act.

‍

11. Security Measures

‍

We apply appropriate technical and organizational measures to protect personal data against loss, unauthorized access, or misuse, including:

• encrypted communication (HTTPS)
• strict access controls
• secure infrastructure
• monitoring and logging systems

Administrative Access
In exceptional cases, authorized personnel of Intaqe (m2m jobs) may access customer data strictly for purposes such as technical support, maintenance, security, and incident resolution.

Such access is limited to what is necessary, restricted to authorized personnel, and is subject to logging and monitoring. Access events may be reviewed internally for security and compliance purposes.

‍

12. Data Subject Rights

‍

Under the General Data Protection Regulation, individuals have the right to:

• access their personal data
• request correction of inaccurate data
• request deletion of personal data
• request restriction of processing
• object to certain types of processing
• request data portability

Candidates should generally contact the employer they applied to (the Data Controller) to exercise these rights.

‍

Requests may also be directed to Intaqe where appropriate. Contact Intaqe via hello@intaqe.eu. We will respond to all data subject requests within 30 days of receipt.

‍

Individuals also have the right to lodge a complaint with their national data protection authority.

‍

13. Transparency When Interacting With AI

‍

When candidates interact with Intaqe, they may communicate with an AI-powered recruitment assistant.

Users are informed that the system uses artificial intelligence to facilitate screening and intake processes.

Human recruiters remain responsible for reviewing candidate information and making hiring decisions.

‍

14. Contact

‍

For privacy or AI-related questions, please contact: hello@intaqe.eu

Operator: m2m jobs (Intaqe)

‍