Recruitment Policy
Last updated: 05th November 2024
Introduction
At AuthBridge we are committed to ensuring that your Personal Data is protected. This Recruitment Privacy notice explains what Personal Data we may gather about you as part of our hiring activities and how this information may be processed. Please read this Recruitment Privacy Notice carefully to understand how we handle your Personal Data.
In this notice, when we refer to “AuthBridge”, “us”, “we” or “our”, we mean AuthBridge Research Services Pvt Ltd and its subsidiaries that you apply to, and which are responsible for any Personal Data collected about you.
Scope & Applicability
This notice is applicable to AuthBridge Research Services Pvt Ltd & its subsidiaries (“AuthBridge”) for protecting the privacy of individuals whose Personal Data is being processed by the employees/ consultants/ sub-contractors of AuthBridge for undertaking various business activities in the course of performance of their duties.
We may collect, process, use, store, maintain and transfer different kinds of Personal Data about you which we have grouped together as follows:
- Personal Data that may be collected includes name, company name(s), e-mail address, and telephone number(s). Such Personal Data is stored with us and may be collected and processed in one or more databases maintained directly by AuthBridge.
- AuthBridge collects Personal Data about the candidates interested in our recruitment drives. To know how we manage their Personal Data, please visit our Recruitment Privacy Policy
- In addition to Personal Data that you choose to submit to us, we may also collect Technical information which may include internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access this website.
- Marketing and Communications Data includes your preferences in receiving marketing services from us and our third parties and your communication preferences.
- We do not collect any Sensitive/ Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data) through our website. Please do not share such information on our website form or email id shared on website.
- We do not encourage you to share your Personal Data in comments section of our social media platforms. Social media sites may have their own privacy policies explaining how they use and share your Personal Data. AuthBridge’s website privacy policy is also applicable to your Personal Data collected through AuthBridge’s social media pages.
- We may also collect your Personal Data through HR events, forums etc. This privacy policy is applicable to data collected through these sources also.
Definitions
Applicable Data Protection Law: Applicable Data Protection Laws means the relevant local and/ or international laws/ regulations basis the jurisdiction where the individual resides or located, whose Personal Data is processed by an organisation.
Some of the applicable data privacy laws to AuthBridge are GDPR and DPDPA.
Personal Data: Personal Data is any data relating to an identified or identifiable natural person.
Sensitive Personal Data: Sensitive Personal Data is a specific set of “special categories” that must be treated with extra security.
Data subject/ Data Principal/ Individual: Means any identified or identifiable natural person; an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identification number or to one or more factors specific to the person’s physical, physiological, mental, economic, cultural or social identity.
Processing: Means any operation or set of operations that is performed upon Personal Data or on sets of Personal Data, whether or not by automatic means, such as collection, recording, organization, structuring, storage, adaptation, alteration, retrieval, consultation, use, transfer, disclosure by transmission, dissemination or otherwise making available, alignment or combination, blocking, restriction, erasure or destruction.
Consent – Means any freely given, specific, informed and unambiguous indication of an individual permission by which he or she signifies/ indicates agreement to the processing of Personal Data relating to him or her.
What Personal Data do we collect?
We collect your Personal Data to support your application to AuthBridge against any open position. The Personal Data that we collect, may include but not limited to the below:
- Your name;
- Your contact number;
- Your email address;
- Details submitted by you in your Resume e.g., Contact details, Education details, Employment details, third-party reference or any other information provided by you;
- Information collected during interviews: As part of our interview process, we maintain records of the interview including comments noted by our interviewers;
- Information collected from online assessments: As part of the recruitment process, we may ask you to take certain tests which are necessary for assessing your suitability for a certain position. Such assessments can also be taken online;
- Personal Data for hiring purpose from other sources; namely, your references, recruitment agencies, social networking portal (e.g., LinkedIn), emails including information related to reference checks, depending on the position you are applying for, and where necessary for the recruitment activities; and
- Data such as copy of Government ID, expectation of compensation and current remuneration details, passport, visa and work permit (in case of expatriate).
We intentionally do not seek any information which, among other things relate to race or ethnic origin, religious or other similar beliefs, political opinions, or mental health or sexual life/orientation) through our career page. However, we do not have any control to stop receiving the same as part of your uploaded document/CV. We encourage you not to share any such information with us as part of your CV.
How We collect your Personal Data?
AuthBridge collects your Personal Data during the application or recruitment process and over time during our relationship with you in number of ways through multiple channels which includes:
- Directly from you (when you apply through job portals or via email or in person);
- Information collected from publicly available sources, including any job search portals you use ;
- Information related to you provided by third-party placement firms, recruiters;
- Other background information provided or confirmed by academic institutions and training or certification providers;
- Criminal records data obtained through criminal records checks;
- Through referrals from your friends, family or professional connects; and
- From third parties and/ or third-party tools (through recruitment agencies and background verification agencies).
Any Personal Data/ Sensitive data is classified as confidential as per AuthBridge information classification policy.
- Risk Assessment – Risk assessment activity is conducted periodically and based on the impact assessment, required security controls are identified and implemented to protect Personal Data.
- Personnel Security – All employees are background verified prior to sharing the Personal Data with them. Confidentiality agreement and Acceptable use policy are signed with all employees. Awareness training based on data privacy, data security and data privacy incident reporting procedure is conducted periodically. For AuthBridge’s third party service providers, background verification is also conducted along with signing the agreement including data privacy or data security obligations, NDA and Code of conduct.
IT Controls –
- Systems & Network Security controls are applied such as System Hardening, Patch Management, VPN Connectivity, Firewall, Intrusion Detection and Prevention System, Patch Management, End Point Protection, Anti-virus, Data Leak Prevention, VAPT of systems, servers, applications, networking devices and applications and Log Management.
- Communication Security controls such as Encryption (Data at rest and transit, SSL/TLS, SSH, Message digest)
- Application security practices including secure SDLC process, security scanning and IP based restriction. Other data security and access management practices are as per controls described in this section.
- Access Management controls such as access role-based access, password protection, multi-factor authentication and principle of least privileges.
- Masking of personal data wherever not needed. Periodic and need basis access review and reconciliation.
- Log Management -Logs are stored at secure place. All accesses to the applications are logged in a secure platform and/or application specific database down to the activity level.
- Business Continuity is ensured through highly resilient and redundant architecture, regular and systematic backups for all business-critical applications and servers as per the defined frequencies. Periodic testing of business continuity & disaster recovery plans is conducted, and continual improvement actions are taken.
Physical Security Controls –
- AuthBridge’s premises are protected 24/7 through security guards to restrict any unauthorized entry.
- Visitor management process and Material In/Out process is implemented.
- Biometric device is in place to capture the entry of employees and registered is maintained for all visitors. Reconciliation is done periodically.
- There is 24/7 CCTV monitoring. Restricted areas are labeled, and entry is allowed for only authorized users.
- There is 24/7 Power back up to support smooth functioning of the facilities. Preventive maintenance is done for support equipment. Facility temperature is maintained with air conditioners. Fire Detection & Prevention system is implemented.
- Emergency Response Team (ERT) members are assigned to each working floor to ensure the timely evacuation in case of emergency. Considering the data center security, we have water leakage alarm, rodent repellent system implemented in place, humidity & temperature monitoring mechanism, separate visitor registers for restricted area, and inventory movement register in place.
Incident Management Process –
- Though AuthBridge has the best possible controls to protect privacy of your Personal Data, there is an incident management policy and procedure implemented to address any security incidents/privacy breach. Incidents are reported, recorded, investigated, and responded with the corrective action plan in a timely manner. There is a mechanism to notify the impacted clients (if applicable) who must further notify the respective individual/s.
How do we use your Personal Data?
We collect and use your Personal Data for recruitment related activities in order to:
- Facilitate any application you make to AuthBridge;
- Contact you during the recruitment process;
- Set up and conduct interviews and assessments;
- Carrying out online aptitude tests, wherever necessary;
- Proctoring of assessments to prevent fraud, when taking online assessments without any supervision;
- Evaluate your suitability for the current role;
- Identifying and evaluating you for future roles that may become available; and
On what basis process personal information about you?
AuthBridge will only process your information where we have a legal basis for doing so and on your prior consent to carry out all or any of the purposes set out in this notice.
Specific Recruitment/Employment Purposes | Legal basis |
| AuthBridge’s legitimate interests of ensuring that it recruits the appropriate employees |
Facilitate communication with you | AuthBridge’s legitimate interests of ensuring proper communication for recruitment purposes |
Perform any legally required reporting and respond to legal process | Compliance with a legal obligation, wherever applicable and/or required |
Your decision to provide any Personal Data to us is voluntary. You will therefore not be subject to adverse consequences if you do not wish to provide us with your Personal Data. However, please note that if you do not provide certain information, we may not be able to accomplish some or all of the purposes outlined in this privacy statement.
If you provide us with Personal Data of another person (for instance, a potential candidate/referral or your references), you are responsible for ensuring that such person is made aware of the information contained in this privacy statement and that the person has given you his/her consent for sharing the information with AuthBridge.
AuthBridge will not use your Personal Data for purposes that are incompatible with the purposes listed in this notice, unless it is required or authorized by law.
Who may have access to your Personal Data?
- In general, access to your Personal Data will be restricted to the number of users within AuthBridge who may have to know the data for the purposes as set out in this Recruitment Privacy Notice, which may include your potential future managers and their designees, as well as personnel in HR and Finance.
- We may also use third parties to carry out certain activities such as facilitating abilities tests (assessment agencies, online test providers etc.), to carry out background checks (background verification agencies), as permitted by applicable laws,
- Wherever necessary, disclosure may include statutory authorities, government officials where statutory or legal reporting requirements may exist, or law enforcement agencies or private litigants in response to valid law enforcement process (warrant, summons, or court order).
Children
Our recruitment activities are not designed for children 18 years of age or younger. It is not our policy to intentionally collect or store information about anyone under the age of 18. If by mistake this has been provided to us, please ensure to inform us on an immediate basis to delete the same from our records.
Data retention
AuthBridge determines the retention period of your information based on the following retention criteria:
- AuthBridge retains your Personal Data that may be relevant to keep a record of past processing or match them against future open roles that we may want to inform you about;
- AuthBridge retains your Personal Data where it is required to do so by a legal obligation to which it is subject;
- AuthBridge retains your Personal Data where this is advisable to safeguard or improve AuthBridge’s legal position (for instance in relation to statutes of limitations, litigation, or regulatory investigations).
How do we protect your Personal Data?
AuthBridge is committed to protecting your Personal Data. AuthBridge is certified to ISO/IEC 27001:2 013 and this international standard defines the requirements for an Information Security Management System (ISMS). AuthBridge’s processes and security controls provide an effective framework for protecting our clients’ and our business information, including Personal Data.
We maintain organizational and technical measures and protocols, controls, and relevant policies; procedures; and guidelines to maintain these controls, considering the risks associated with the categories of Personal Data and the processing we undertake.
We employ procedures, including contractual obligations, and require all third parties to respect the security of Personal Data about you. We do not grant permission for our third-party service providers to use Personal Data about you for their own purposes and only grant permission for them to process Personal Data about you for specified purposes and in accordance with our instructions.
Rights for Data Subjects
You have the following rights with respect to your Personal Data that we process, subject to the conditions and restrictions set out under the Applicable Laws and basis the jurisdiction in which you reside.
- Right of access: You are entitled to obtain a copy of your Personal Data, together with an explanation of the categories of information being processed, the purposes of such processing, and the details of third parties to whom the information may have been disclosed.
- Right to rectification: You are entitled to correct or update your Personal Data available with us.
- Right to erasure: You are entitled to get your information deleted from our records.
- Right to object to and / or restrict processing: You have the right to object to and / or restrict the processing or sharing of your information in limited circumstances.
- Right to data portability: You are entitled to obtain and reuse your Personal Data. You can either obtain the information from us and provide it to a third party or ask us to transfer your Personal Data directly to a third party.
- Right to withdraw or opt-out: You have right to withdraw from any or all of the purposes for which your Personal Data has been collected at any time by contacting us.
- Right to not be discriminated against for exercising your individual rights regarding your Personal Data;
- Right to nominate (in the manner prescribed by the Central govt.) any other individual to exercise the above-mentioned rights, in the event of the death or incapacity (unsoundness of mind or infirmity of body) of the data principal.
- Right to complain and obtain redressal: You have the right to lodge a complaint with the competent supervisory authority, depending upon your jurisdiction, to obtain redressal.
If you wish to exercise any of your rights, and share with us at datasubjectrights@authbridge.com
Contact us
We commit to handle your Personal Data in a way that provides you comfort and confidence. We also have processes for investigating and resolving any complaints regarding Personal Data privacy concerns.
If you wish to contact AuthBridge for any privacy related query/concern, then please send email at privacy@authbridge.com Or mail to
AuthBridge’s Data Privacy Office (Dept-Compliance)
AuthBridge Research Services Pvt. Ltd.
Plot No. 123, II Floor, Udyog Vihar,
Phase IV – Gurgaon – 122 015
Haryana, India
Updates to this Recruitment Privacy Notice
We may update our privacy policy from time to time. To let you know, we will amend the revision date on top of this page.
Stay Informed
Keep yourself updated with the latest innovations in BGV & Authentication Technology from India’s leading Background Verification Company
Sign up for our newsletter
AuthBridge is the #1 Authentication Company.
Copyright 2023 AuthBridge, All Rights Reserved.
Hi! Let’s Schedule Your Call.
To begin, Tell us a bit about “yourself”
The most noteworthy aspects of our collaboration has been the ability to seamlessly onboard partners from all corners of India, for which our TAT has been reduced from multiple weeks to a few hours now.
- Mr. Satyasiva Sundar Ruutray
Vice President, F&A Commercial,
Greenlam
Greenlam
