1. Introduction

Welcome to Glomote, a global remote job board platform operated autonomously ("Glomote," "we," "us," or "our"). We are committed to protecting your privacy and ensuring the security of your personal information.

This Privacy Policy explains how we collect, use, process, and protect your information when you use our website, and related services (collectively, the "Platform"). By using Glomote, you consent to the data practices described in this policy.

Our Commitment: We believe in transparency, data minimization, and giving you control over your personal information.

2. Information We Collect

2.1 Information You Provide Directly

Account Registration Information:
• Full name and preferred name
• Email address and phone number
• Password (encrypted and stored securely)
• Professional title and experience level
• Geographic location and Time zone
• Display Picture
Job Seeker Profile Information:
• Resume/CV documents
• Cover letters and application materials
Employer Profile Information:
• Company name and description
• Industry and company size
• Contact information for authorized representatives
• Company logo and branding materials
• Verification documents
Job Posting Information:
• Job titles and descriptions
• Required qualifications and skills
• Compensation and benefits information
• Application instructions and deadlines
• Company culture and remote work policies
Communication Data:
• Messages sent through our Platform
• Application submissions and responses
• Customer support inquiries
• Feedback and survey responses
Payment Information:
• Billing address and contact details
• Payment method information (processed by third-party payment processors)
• Transaction history and invoices
• Tax identification information (when required)

2.2 Information We Collect Automatically

Technical Information:
• IP address and geographic location
• Device type, operating system, and browser information
• Screen resolution and device identifiers
• Network connection information
• Access times and session duration
Usage Analytics:
• Pages visited and features used
• Search queries and filters applied
• Job applications and interactions
• Time spent on different sections
• Click-through rates and engagement metrics
• A/B testing participation and results
Cookies and Similar Technologies:
• Essential cookies for Platform functionality
• Performance cookies for analytics
• Preference cookies for customization
• Marketing cookies for advertising (with consent)
• Local storage for user preferences

2.3 Information from Third Parties

Social Media Integration:
• Profile information from LinkedIn, GitHub, or other connected accounts
• Professional connections and network data
• Public posts and activity (when authorized)
Background Check Providers:
• Employment verification data
• Educational credential verification
• Professional reference information
Data Enrichment Services:
• Company information and verification
• Industry classifications and market data
• Public professional information
Payment Processors:
• Transaction verification and fraud prevention data
• Payment method validation information

3. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

• Providing Platform services and functionality
• Processing job applications and communications
• Managing your account and subscriptions

• Improving Platform security and preventing fraud
• Conducting analytics to enhance user experience
• Marketing our services (where consent is not required)
• Protecting our legal rights and interests

• Fulfilling tax and accounting obligations
• Responding to legal requests and court orders
• Complying with employment and anti-discrimination laws

• Marketing communications and newsletters
• Sharing data with third-party integrations
• Processing sensitive personal data (when applicable)

4. How We Use Your Information

4.1 Core Platform Services

Job Matching and Discovery:
• Personalizing job recommendations
• Improving search relevance and filtering
• Matching job seekers with relevant opportunities
• Providing skills-based job suggestions
Profile and Application Management:
• Creating and maintaining user profiles
• Processing job applications and communications
• Facilitating employer-candidate interactions
• Tracking application status and history
Account Administration:
• User authentication and access control
• Account security and fraud prevention
• Customer support and technical assistance
• Subscription and billing management

4.2 Platform Improvement and Analytics

Service Enhancement:
• Analyzing usage patterns and user behavior
• A/B testing new features and improvements
• Identifying technical issues and performance problems
• Developing new products and services
Market Research:
• Understanding job market trends and demands
• Analyzing salary and compensation data
• Studying remote work patterns and preferences
• Creating industry reports and insights

4.3 Communication and Marketing

Transactional Communications:
• Account notifications and security alerts
• Job application status updates
• Payment confirmations and invoices
• Important service announcements
Marketing Communications (with consent):
• Newsletter and platform updates
• New feature announcements and tips
• Relevant job opportunities and recommendations
• Industry insights and career resources

4.4 Legal and Compliance

Legal Obligations:
• Responding to subpoenas and legal requests
• Complying with tax and financial regulations
• Meeting employment law requirements
• Fulfilling data protection obligations
Safety and Security:
• Preventing fraud and abuse
• Protecting user safety and platform integrity
• Investigating violations of Terms of Service
• Maintaining secure systems and data

5. Information Sharing and Disclosure

5.1 With Other Users

Public Profile Information:
• Job postings visible to job seekers
• Application materials shared with hiring managers
Controlled Visibility:
• Anonymous browsing options for job seekers
• Restricted access to contact information

5.2 With Service Providers

Essential Service Partners:
• Cloud hosting and infrastructure providers
• Payment processing and billing services
• Email delivery and communication platforms
• Customer support and ticketing systems
Analytics and Marketing:
• Website analytics and performance monitoring
• Marketing automation and campaign management
• A/B testing and user research platforms
• Social media and advertising networks
Security and Compliance:
• Identity verification and background check services
• Fraud detection and prevention tools
• Legal and regulatory compliance services
• Cybersecurity monitoring and incident response

5.3 Legal and Regulatory Disclosure

We may disclose your information when required by law or to protect our rights:

Legal Requirements:
• Court orders, subpoenas, and legal process
• Government agency requests and investigations
• Tax authorities and financial regulators
• Employment law compliance and investigations
Platform Protection:
• Preventing fraud, abuse, and illegal activity
• Protecting user safety and security
• Enforcing Terms of Service and policies
• Defending legal claims and litigation

5.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity, subject to the same privacy protections.

6. International Data Transfers

6.1 Global Operations

As a global platform, we transfer and process data internationally to provide our services effectively.

Transfer Mechanisms:
• European Commission adequacy decisions
• Standard Contractual Clauses (SCCs)
• Binding Corporate Rules (BCRs)
• Certified transfer frameworks
Safeguards:
• Data Processing Agreements with all vendors
• Regular security and compliance audits
• Encryption in transit and at rest
• Access controls and monitoring

6.2 Regional Considerations

European Union (GDPR):
• Primary processing within EU/EEA when possible
• Adequate safeguards for non-EU transfers
• Data subject rights fully implemented
• Data Protection Officer appointed
United States:
• Compliance with state privacy laws (CCPA, CPRA, etc.)
• Participation in certified transfer frameworks
• Enhanced security measures for international transfers
Other Jurisdictions:
• Compliance with local data protection laws
• Regular review of transfer mechanisms
• Adaptation to changing regulatory requirements

7. Data Retention

7.1 Retention Periods

Active Accounts:
• Profile and account data: Retained while account is active
• Job applications and communications: 7 years or as legally required
• Payment and billing records: 7 years for tax and accounting purposes
• Analytics and usage data: 26 months (anonymized thereafter)
Inactive Accounts:
• Account deletion after 3 years of inactivity (with prior notice)
• Essential data retained for legal compliance
• Anonymized data may be retained for analytics
• Right to request immediate deletion
Deleted Accounts:
• Immediate removal from public visibility
• Secure deletion within 30 days
• Backup systems purged within 90 days
• Legal retention where required by law

7.2 Retention Factors

• Legal and regulatory requirements
• Legitimate business needs
• User expectations and industry standards
• Data minimization principles

8. Your Rights and Choices

8.1 Access and Control Rights

Account Management:
• Access and update profile information
• Download your data in portable formats
• Delete specific information or your entire account
• Control visibility and sharing preferences
Communication Preferences:
• Choose communication channels and frequency
• Unsubscribe from specific types of messages

8.2 GDPR Rights (EU Users)

• Right of Access: Request information about data processing and obtain copies of your data
• Right to Rectification: Correct inaccurate or incomplete personal data
• Right to Erasure: Request deletion of your personal data (with certain exceptions)
• Right to Restrict Processing: Limit how we process your data in specific circumstances
• Right to Data Portability: Receive your data in a structured, machine-readable format
• Right to Object: Object to processing based on legitimate interests or for marketing purposes
• Rights Related to Automated Decision-Making: Request human review of automated decisions

8.3 CCPA Rights (California Users)

• Right to Know: Information about data collection, use, and sharing practices
• Right to Delete: Request deletion of personal information (with certain exceptions)
• Right to Opt-Out: Opt-out of the sale of personal information (we do not sell personal information)
• Right to Non-Discrimination: Equal treatment regardless of privacy rights exercised
• Right to Correct: Request correction of inaccurate personal information

8.4 Exercising Your Rights

Contact Methods:
• Email: privacy@glomote.com
Verification Process:
• Identity verification required for security
• Response within legally required timeframes
• Appeal process for denied requests
• Assistance available throughout the process

9. Cookies and Tracking Technologies

9.1 Types of Cookies We Use

Essential Cookies:
• Authentication and session management
• Security and fraud prevention
• Load balancing and platform functionality
• Legal compliance and consent management
Performance Cookies:
• Website analytics and usage statistics
• Performance monitoring and optimization
• A/B testing and feature development
• Error tracking and diagnostic information
Functionality Cookies:
• User preferences and customization
• Language and region settings
• Accessibility features and options
• Previous search and application history
Marketing Cookies:
• Advertising campaign effectiveness
• Social media integration and sharing
• Retargeting and personalized advertising
• Cross-platform tracking and attribution

9.2 Other Tracking Technologies

Web Beacons and Pixels:
• Email open and engagement tracking
• Website interaction monitoring
• Advertising effectiveness measurement
Local Storage:
• User preferences and settings
• Temporary data for performance
• Offline functionality support
Device Fingerprinting:
• Fraud prevention and security
• Enhanced user experience
• Analytics and optimization

10. Data Security

10.1 Technical Safeguards

Encryption:
• End-to-end encryption for sensitive communications

10.2 Organizational Safeguards

Staff Training:
• Regular privacy and security training
• Background checks for employees with data access
• Confidentiality agreements and data handling policies
• Incident response training and procedures
Vendor Management:
• Due diligence on all third-party providers
• Data Processing Agreements (DPAs) with vendors
• Regular security assessments of partners
• Incident notification requirements

10.3 Incident Response

Breach Response Plan:
• Immediate containment and investigation
• Risk assessment and impact analysis
• Regulatory notification within 72 hours (where required)
• User notification and remediation assistance
Business Continuity:
• Regular data backups and disaster recovery testing
• Redundant systems and failover capabilities
• Incident communication plans
• Service restoration procedures

11. Children's Privacy

11.1 Age Restrictions

Glomote is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16.

If You Are Under 16:
• Do not create an account or use our services
• Do not provide any personal information
• Ask a parent or guardian for assistance
If You Are 16-17:
• Parental consent may be required in some jurisdictions
• Limited account features may apply
• Enhanced privacy protections are in place

11.2 Discovery and Remediation

• We will delete the information as soon as possible
• We will terminate any associated account
• We will implement measures to prevent recurrence
• We will notify parents/guardians if contact information is available

12. Third-Party Links and Services

12.1 External Links

Our Platform may contain links to third-party websites, job boards, and services. We are not responsible for the privacy practices of these external sites.

User Responsibility:
• Review privacy policies of linked sites
• Understand data sharing implications
• Make informed decisions about external interactions

12.2 Social Media Integration

• We access only explicitly authorized information
• You control the level of integration and sharing
• You can disconnect accounts at any time
• Social media platforms have their own privacy policies

12.3 Job Application Process

• Employer privacy policies may apply
• We may share application data as authorized
• Direct employer communications are outside our control
• Your rights may vary by jurisdiction and employer

13. Updates to This Privacy Policy

13.1 Policy Changes

We may update this Privacy Policy periodically to reflect:

• Changes in our data practices
• New features and services
• Legal and regulatory requirements
• Industry best practices and standards

13.2 User Options

• Contact us with concerns or questions
• Adjust your privacy settings
• Delete your account before changes take effect
• Exercise applicable data subject rights

14. Contact Information

14.1 Privacy Inquiries

General Privacy Questions:
• Email: privacy@glomote.com
• Response Time: Within 5 business days
Data Subject Rights Requests:
• Email: rights@glomote.com
• Response Time: Within 30 days (or as legally required)

This Privacy Policy is part of our Terms of Service and governs your use of Glomote. By using our Platform, you acknowledge that you have read and understood this Privacy Policy.