Privacy Policy
How Jellybrain, Inc. collects, uses, and protects information when you visit Jellyfish or use the recruiter application.
Who we are and this policy's scope
Jellybrain, Inc., a Delaware corporation doing business as Jellyfish (“Jellyfish,” “we,” “us,” or “our”), provides recruiting workflow software. This Privacy Policy applies to our public website and the Jellyfish recruiter application (together, the “Service”). It explains how we handle personal information in connection with the Service.
If you use Jellyfish on behalf of a recruiting agency, employer, or other organization, that organization may have its own privacy notice and controls for the recruiting information it provides to Jellyfish.
Information we collect
We may collect the following categories of information:
- Account and business information, such as your name, work email address, organization, role, and authentication details.
- Recruiting and candidate information, such as job requirements, intake notes, candidate names, contact details, professional history, qualifications, communications, and calendar or interview details that an authorized customer provides or asks us to process.
- Communications, including messages, demo requests, and support correspondence.
- Usage and device information, including pages or features used, approximate device and browser details, IP address, log information, and product events used to operate, secure, and improve the Service.
How we use information
We use information to:
- provide, maintain, and secure the Service;
- authenticate users and administer customer workspaces;
- perform recruiting workflows requested by an authorized customer, including organizing intake information, sourcing support, outreach, and scheduling;
- respond to requests, provide support, and communicate with you;
- understand Service performance and improve the user experience;
- detect, investigate, and prevent fraud, abuse, and security incidents; and
- comply with applicable law and enforce our agreements.
Customer data and recruiting information
For data an organization submits to its Jellyfish workspace (“Customer Data”), the customer generally determines why and how that data is used. We process Customer Data to provide, secure, and support the Service, on the customer's instructions, and as otherwise required by law. Customers are responsible for having an appropriate legal basis to provide Customer Data and for giving any notices or obtaining any permissions required for their recruiting activities.
Jellyfish is designed to support human recruiting teams. Customers must make their own employment and candidate-related decisions and must not use Service outputs as the sole basis for a decision that materially affects an individual.
When we share information
We may share information with:
- the customer organization and its authorized users, where needed to provide the Service;
- vendors that help us operate the Service, such as hosting, authentication, analytics, communications, and AI technology providers, subject to appropriate contractual safeguards;
- professional advisers, insurers, and transaction counterparties in connection with a financing, merger, acquisition, or similar event; and
- authorities or other parties when we reasonably believe disclosure is necessary to comply with law, protect rights or safety, or investigate abuse or security issues.
Cookies and analytics
We use cookies, local storage, and similar technologies for essential functions such as sign-in and security, and to understand how the Service is used. You can manage certain browser storage through your browser settings. Disabling some technologies may affect Service functionality. Where required by law, we will provide any required choice or consent mechanism.
Data retention and security
We retain information for as long as reasonably necessary for the purposes described in this policy, including to provide the Service, meet legal obligations, resolve disputes, and enforce agreements. Retention of Customer Data may also be governed by the customer's agreement with us.
We use reasonable technical and organizational measures designed to protect information. No system is completely secure, and we cannot guarantee absolute security.
International transfers
We and our service providers may process information in the United States and other countries. When required, we use appropriate safeguards for cross-border transfers.
Your privacy choices and rights
Depending on where you live and the nature of our relationship with you, you may have rights to request access to, correction of, or deletion of personal information, or to object to or restrict certain processing. You may also have rights to appeal a decision about a privacy request. To make a request, contact us using the details below. We may need to verify your identity and authority before responding.
If your information is Customer Data, please contact the organization that collected it first. We will support that organization as required by applicable law and our agreement with it.
Children's privacy
The Service is not directed to children, and we do not knowingly collect personal information from children under 16. If you believe a child has provided us personal information, contact us so we can take appropriate action.
Changes and contact
We may update this Privacy Policy from time to time. We will post the updated version here and revise the “Last updated” date. For privacy questions or requests, email symion@vibeonly.ai.