Job Candidate Privacy Policy

This Job Candidate Privacy Notice (“Notice”) describes what personal data the Rapyd group of companies, which includes Rapyd Financial Network (2016) Ltd., Rapyd Payments Limited, Neat Limited, Rapyd Holdings Pte Ltd, CashDash UK Limited, and Rapyd Europe hf.  (“Rapyd”, “we”, “our” or “us”), collect and process our job candidates and applicants (“Candidates”, “you” or “your”) with respect to our application and recruitment process, why we collect it and how we use it. It also describes how Candidates may exercise their rights to such data held with us.

We strongly urge you to read this Notice and make sure that you fully understand and agree to it. If you do not agree to this Notice, please avoid providing us with your data. 

You are not legally required to provide us with any personal data, but without it we may not be able to process your application.

1. What data do we collect, how do we collect it, and how do we use it? 

Throughout the application and recruitment process, you may provide us (or we may otherwise have access to) personal data about you, such as your identifying data, contact details, resume/CV, work-related data, public social media activity, career history and specific questions regarding your anticipated role. We may collect this data directly from you, as you provide it voluntarily through your application and candidacy review process, or from other sources such as recruitment agencies, background check services (as applicable and subject to applicable law), or your references. 

We may use such data to assess your skills, qualifications and overall to verify, consider and process your application and candidacy for any of our positions, and to communicate with you regarding such processes. We may also use it to manage risk and enhance our security and anti-fraud measures, and to create aggregated statistical or inferred data regarding our Candidates, for further development and improvement of our recruitment processes. 

In addition, we may use it to act as permitted by, and to comply with, any legal or regulatory requirements. Shall we wish to conduct any additional activities that may require the use of your data, we will request your specific consent in advance.

2. Where do we store our Candidates’ data?

Given the global nature of our services, your personal data may be maintained, processed and stored by us and our Service Providers (as defined below) in the United States of America (U.S.), the State of Israel, Singapore, the European Economic Area (“EEA”), Iceland, the UK, Hong Kong, Dubai, and other jurisdictions, as necessary or as may be required by law. 

For data transfers from the EEA or the UK to countries which are not considered by the European Commission and the UK Secretary of State to be offering an adequate level of data protection, we and the relevant data importers have entered into Standard Contractual Clauses as approved by the European Commission and UK Information Commissioner’s Office (ICO).

While privacy laws may vary between jurisdictions, Rapyd, its affiliates and Service Providers processing personal data on our behalf (as discussed below) are each committed to protect personal data in accordance with this notice, customary industry standards, and such appropriate lawful mechanisms and contractual terms requiring adequate data protection, regardless of any lesser legal requirements that may apply in the jurisdiction to which such data is transferred.

3. For how long may we keep your data? 

We may retain your data even after the applied position has been filled or closed. This is done so we could reconsider Candidates for other positions and opportunities at Rapyd; so we could use your personal data as reference for future applications submitted by you; in case the Candidate is hired, for additional employment and business purposes related to their work; and as reasonably necessary to comply with our legal obligations, to resolve disputes, prevent fraud and abuse, enforce our agreements or otherwise protect our legitimate interests.

4. How will we secure your data?

Rapyd has implemented security measures designed to protect the personal data of our Candidates, including physical, procedural and electronic measures. These measures provide sound industry standard security. We also regularly seek new ways and tools for further enhancing the security of our system and the integrity of the personal data that we hold. Please note however, that regardless of the measures we take and the efforts we make, we cannot and do not guarantee the absolute protection and security of any personal data stored with us. 

5. Who will have access to your data?

Rapyd will share your personal data with several selected Service Providers, whose services and solutions complement, facilitate and enhance our own Services. These include any recruitment firms that have referred you to us (or vice versa), background checks providers, recruitment software providers, data and cyber security services, web analytics, and our business, legal, compliance and financial advisors (collectively, “Service Providers“). Such Service Providers may receive or otherwise have limited access to our Candidates’ personal data, depending on each of their particular roles and purposes in facilitating and enhancing our recruitment process, and may only use it for such purposes. 

Additionally, we may disclose or otherwise allow access to any Candidates’ personal data pursuant to a legal request, such as a subpoena, search warrant or court order, or in compliance with applicable laws, with or without notice to you, if we have a good faith belief that we are legally required to do so, or that disclosure is appropriate in connection with efforts to investigate, prevent, or take action regarding actual or suspected illegal activity, fraud or other wrongdoing. We may also share your personal data with others, with or without notice to you, if we believe in good faith that this will help protect the rights, property or personal safety of Rapyd, any of our customers or employees, or any member of the general public.

Finally, we may share personal data internally within our group of companies, for the purposes described above. Such sharing is made subject to our internal Data Processing Agreements. In addition, should Rapyd undergo any change in control, including by means of merger, acquisition or purchase of all or part of its assets, your personal data may be shared with the parties involved in such an event.

6. Which Cookies and tracking technologies do we use?

A cookie is a small text file that is placed, for example, to collect data about you when you submit your application via our sites.

Rapyd uses certain monitoring and tracking technologies, such as Cookies and other downloaded data files, including ones offered by our Service Providers. These technologies are used in order to maintain, provide and improve our processes and operations on an ongoing basis, and in order to provide a better experience to our website visitors and Candidates. For example, these technologies enable us to better secure our website and services and detect abnormal behaviors, to identify technical issues, and to monitor and improve the overall performance of our services and processes. In order to delete or block any Cookies, please refer to the “Help” area on your internet browser for further instructions, or look for optional third-party add-ons offering Cookie management assistance. For example, you can instruct your browser, by changing its options, to stop accepting Cookies or to prompt you before accepting a Cookie from the website you visit. 

On some pages of our website, online platform and services (“Services”), other organisations may also set their own Cookies. They do this to track the activity of their applications that are integrated with our Services to customize their services for you. Because of how cookies work, our Services cannot access these Cookies, nor can the other organisation access the data in Cookies we use on our Services.

While we do not change our practices in response to a “Do Not Track” signal in the HTTP header from a browser and recommend the use of cookies for an optimal user experience of our Services, most browsers allow you to control cookies, including whether to accept them or to remove them. You may set most browsers to notify you if you receive a cookie, or you may choose to block cookies with your browser 

We also use analytics tools such as Google Analytics. These tools help us understand your behavior on our Services, including by tracking page content, and click/touch, movements, scrolls and keystroke activities. Further information about the privacy practices of our Google Analytics is available at: www.google.com/policies/privacy/partners/;

Further information about your option to opt-out of Google Analytics services is available at: https://tools.google.com/dlpage/gaoptout.

Please note that if you get a new computer or device, install a new browser, erase or otherwise alter your browser’s cookie file (including upgrading certain browsers), you may also clear the opt-out cookies installed once you opt-out, so an additional opt-out will be necessary to prevent additional tracking.

To learn more about our cookies practices, please visit our Cookie Policy.

7. How can you access your data or request to delete it?

If you wish to exercise your rights, you can submit your request via Rapyd Privacy Request Webform or contact us  at the following email address: privacy@rapyd.net. We will consider any requests, complaints or queries and provide you with a reply in a timely manner. We take our obligations seriously and we ask that any concerns are first brought to our attention, so that we can try to resolve them. To the extent you feel unsatisfied with our response to your request to exercise your rights, you may choose to send us a request to appeal our decision. If you are unsatisfied with our response, you can lodge a complaint with the applicable data protection supervisory authority. 

Please note that we may require additional information, including certain personal data, in order to authenticate and process your request. Such additional information may be then retained by us for legal purposes (e.g. as proof of the identity of the person submitting the request), in accordance with Section 3 above. We may redact from the data which we will make available to you, any personal data related to others.

Please also note that such rights are not absolute. There are instances where applicable law or regulatory requirements allow or require us to refuse to provide some or all of the personal data that we hold about you. In the event that we cannot accommodate your request, we will inform you of the reasons why, subject to any legal or regulatory restrictions.

8. Will this Notice be updated?

We may update this Notice to reflect changes in our privacy practices. If we make any changes that we deem as “material”, we will update this page prior to the change becoming effective. 

9. Data controller/Data Processor

Certain data protection laws and regulations, such as the GDPR or UK GDPR, typically distinguish between two main roles for parties processing personal data: the “Data Controller”, who determines the purposes and means of processing; and the “Data Processor”, who processes the data on behalf of the Data Controller.

Rapyd is the Data Controller of its Candidates’ personal data, and with respect to which, assumes the responsibilities of Data Controller (solely to the extent applicable under law) and as set forth in this Policy.

10. Additional notices

California Requirements: This policy describes the categories of personal information we may collect and the sources of such information (in Section ‎1 above), our retention (Section ‎3) and deletion (Section ‎7) practices. We also included information about how we may process your information (in Sections ‎1 through ‎6), which includes processing for “business purposes” under the California Consumer Privacy Act (CCPA). We do not sell your personal information for the intents and purposes of CCPA. We may disclose personal data with third parties or allow them to collect personal data from our Services as described above, if those third parties are authorized Service Providers or business partners who have agreed to our contractual limitations as to their retention, use, and disclosure of such personal data, or if you integrate the services of third parties with our Services, or direct us to disclose your personal data to third parties.

If you have any comments or questions regarding our Privacy Notice, if you have any concerns regarding your privacy, or if you wish to make a complaint about how your personal data is being processed by Rapyd, you can contact privacy@rapyd.net or our DPO at dpo@rapyd.net.

Rapyd’s UK and Rapyd’s Iceland offices have been designated as Rapyd’s representatives in the United Kingdom (“UK”) and in the European Union (“EU”), respectively. Our representatives may be contacted only on matters related to the processing of Personal Data. To make such an inquiry please send an email to privacy@rapyd.net. If you are a GDPR or UK-GDPR protected individual, you also have the right to lodge a complaint with the relevant supervisory authority in the UK or in the EU, as applicable.

11. What if you have any questions?

If you have any questions regarding this Notice, our data practices or the security of our services during the job application processes, or if you wish to make a complaint about how your personal data is being processed by Rapyd, you can contact us at privacy@rapyd.net. 

 

Last updated: 12 March 2024