Reejig's Work Ontology™ Awarded 2023 Top HR Tech Product of the Year

image

Reejig’s Data Privacy & Government Surveillance Frequently Asked Questions

This page provides information about the privacy and security of Reejig’s software and services which can help our customers to assess our security and privacy program, including by completing data privacy impact assessments. It does not provide legal advice. We urge you to consult with your own legal counsel to familiarize yourself with the requirements that govern your specific situation.

Customer Data Protection Impact Assessments & Reejig

Reejig is committed to both complying with applicable data protection laws when providing services to our customers as a processor and to ensuring that our customers can continue to use our software and services while complying with the applicable data protection laws. Data protection law compliance requires a partnership between Reejig and our customers in their use of our software and services. As part of our commitment to our customers, we’ve published this document to describe the features customers can use when responding to common requests using Reejig’s software and services, and to assist our customers in completing their data protection impact assessment for Reejig’s software and services. This document may also help you assess how Reejig complies with its obligations under applicable data protection laws and customer agreements.

Security & Architecture.
Data protection laws require organizations to use appropriate technical and organizational security measures to protect Personal Data against unauthorized processing and accidental disclosure, access, loss, destruction, or alteration. Reejig has robust security and privacy practices in place that comply with industry standards. They enable Reejig and its Customers to comply with a variety of data protection laws and regulations applicable to Reejig’s software and services.

Every customer’s data is stored separately and encrypted at rest, and in transit. Reejig customers can also utilize user role-based access privileges. Reejig has also implemented procedures designed to ensure that Customer Data is processed only as instructed by a customer, throughout the entire chain of processing activities by Reejig and its sub-processors.

Security Controls & Certifications.
The Reejig Services include a variety of security controls, policies, and procedures, as further described here, https://www.reejig.com/security, and in any other documentation provided to a customer. Reejig has obtained multiple industry-standard third-party certifications and audit reports, including ISO 27001 and SOC2 Type II.

Data Subject Rights.
Data protection laws afford individuals whose Personal Data is processed certain rights, depending on where they are a resident. These rights require companies to have systems in place to respond to and effectively address individual data subjects’ requests. For example, if an individual submits a request to have its Personal Data deleted and the relevant circumstances apply, companies must be equipped to find the relevant Personal Data linked to that individual and delete it.

Upon a customer’s request, Reejig will delete the personal data of an individual in Reejig’s software. If Reejig receives a data subject access request directly from a customer related data subject, Reejig will forward the request to a customer and await further instructions from a customer.

Provide a general description of the Reejig Services.
For a description of each Reejig Service, please see the offerings listed on Reejig's Website.

Describe the Personal Data that will be used, stored, collected, disclosed, or otherwise Processed in Reejig’s software.
Reejig customers can choose what data to submit to, and collect, using Reejig’s software. The Personal Data processed will vary per a customer’s own use-case. Typical Personal Data processed within the Reejig Services may include names, contact information, professional information, and other information about candidates and employees.

Does the personal data include “special categories of personal data” (as defined under GDPR) or personal data related to criminal convictions or offences?
Reejig customers may be able to submit “special categories of Personal Data” to Reejig’s software. Reejig customers are responsible for ensuring that submission of any special categories of Personal Data, where permitted, complies with applicable laws. Customers do not need to input special categories of personal data or other high risk personal data in Reejig for Reejig to provide Reejig’s software and services.

Does the personal data include financial account numbers, government identification numbers, or health information?
This information is not necessary for Reejig to provide Reejig’s software and services. If a customer places this information in Reejig’s software, then Reejig may process this information.

Are individual data subjects made aware of the details of the processing of their personal data?
Reejig’s software does not operate at the point of collection for candidate data. Thus, Reejig does not directly communicate with a customer’s data subjects. Responsibility for making data subjects aware of a customers’ processing of their personal data using the Reejig’s software and services rests with customers. This responsibility is usually fulfilled via a customer’s applicant tracking or candidate relationship management tool.

To the extent Reejig processes personal data for its own purposes, the Reejig Privacy Statement and other privacy-related documentation are publicly available at the Reejig Legal Center.

How is access to the software managed?
Reejig customers can assign different levels of access to their users. Reejig’s software and services also allows customers to assign access permissions based on the user’s role. Reejig’s Customer contracts restrict access by Reejig’s personnel as further outlined below in the section “Can Reejig personnel access Personal Data in the Service”.

To the extent Customers need Reejig’s assistance in managing Personal Data, Reejig has committed to helping as described in its Data Processing Addendum located here: Reejig DPA.

Can Reejig personnel access personal data in the software? If so, where are those personnel located and for what purpose do they need access?
Reejig’s Data Processing Addendum contains a contractual commitment by Reejig that its personnel may access Personal Data only in accordance with Customer’s documented instructions for specific purposes, including processing under the Data Processing Addendum, processing initiated by the customer in using Reejig’s software and services, and processing to comply with other instructions provided by a customer. The locations of Reejig’s Affiliates that employ personnel who may access Personal Data for these purposes are available in the data processing addendum here: Reejig DPA.

Who will manage security?
Reejig has policies and procedures in place to protect the security of the Reejig’s software. Reejig’s security is described here Reejig Security, as well as in any additional documentation provided to a customer upon request. Customers are responsible for maintaining the confidentiality of all their authorized users’ names and passwords.

Who is responsible for assuring proper use of the personal data?
Customers are responsible for using the Reejig Services appropriately, including their processing of personal data using Reejig’s services. Reejig’s Data Processing Addendum provides that Reejig is responsible for providing the Reejig Services appropriately and contains a commitment from Reejig to use the Personal Data only in accordance with Customer’s documented instructions for specific purposes, including processing under the Data Processing Addendum, processing initiated by the Customer in using the Reejig Services, and processing to comply with other instructions provided by a customer.

How can requests from individual data subjects to access or correct their personal data be handled?
The Reejig Services allow Customers to manage the Personal Data they maintain in the Reejig Service, including in response to Data Subject requests.

To the extent a customer needs Reejig’s assistance to respond to a Data Subject, Reejig will provide assistance as described in its Data Processing Addendum.

Where will personal data be stored?
Reejig’s storage locations for Personal Data are described in Reejig's DPA.

Reejig utilizes the Standard Contractual Clauses to support the international transfer of data.

Describe the information flows for personal data for Reejig’s software.
Reejig’s software is a cloud-based platform, and Customers can allow their users to access the Reejig Services from virtually anywhere with an internet connection. For these reasons, Personal Data may flow to or from Reejig from global locations, depending on where the Customer, its users, and other end users and its website visitors are located.

The locations of Reejig and its Sub-processors are described here: Reejig Subprocessors.

How are transfers across national borders accounted for? If a transfer takes place, what is the purpose of this transfer?
Reejig’s Data Processing Addendum offers the Standard Contractual Clauses (the “SCCs”) as a transfer mechanism for all Reejig Services and includes an “order of precedence” clause if mechanism is not or no longer applicable.

For more information about these transfer mechanisms and which Reejig Services will rely on which mechanism, please see Reejig's DPA.

The purpose of such a transfer could for example be to allow a Reejig employee based in the United States to provide customer support to a European customer.

How (and with whom) will personal data be shared?
Personal Data is shared with Reejig and, if applicable, its Sub-processors, as described here: Reejig's Subprocessors.

Access by Reejig and its Sub-processors is subject to the protections in the Data Processing Addendum and Reejig maintains safeguards to prevent access except (x) to provide the Reejig Service and prevent or address service or technical problems, (y) as compelled by law, and (z) as the Customer expressly permits in writing.

Which controls does Reejig have in place with respect to sub-processors?
As described in the Data Processing Addendum, Reejig (i) takes responsibility for the actions of its Sub-processors, and (ii) has entered into a written agreements with each Sub-processor containing data protection obligations not less protective than those in our customer agreements. In addition, all the data transfer mechanisms that Reejig offers contain comprehensive obligations in respect of Sub-processors.

Up-to-date information about Reejig’s Sub-processors can be found at https://www.reejig.com/subprocessors. Customers may subscribe to notifications of new Sub-processors for each service at the foregoing link. Reejig will notify all subscribed customers of a new sub-processor before authorizing the new sub-processor to process customer data. Customers may object to the intended use of a new sub-processor using the procedure set forth in their agreement with Reejig.

What contracts are in place to protect personal data submitted to the Service?
Protections for Personal Data are described in a Reejig Customer’s contract with Reejig, specifically in Reejig's DPA.

Contractual documents containing protections for personal data include (1) a master subscription agreement between Reejig and a Customer or other document governing the purchase of a subscription to Reejig’s software and services, and/or (2) a Data Processing Addendum.

How does Reejig respond to government requests to access Customer Data?
As explained in Reejig’s MSA, Reejig will disclose Customer Data to a governmental entity only when required to do so by law, in response to a valid compelled disclosure request from a governmental entity.

Reejig has not received a government request for customer data. In the unusual circumstances where we do receive such a request, Reejig process whereby the Reejig Legal Department reviews the request to determine if it is lawful, valid, and enforceable, and we notify our customer of the request, to the extent permitted by law. Reejig can contractually guarantee to provide such notification customer agreements.

For more details, please see Reejig's Data Privacy & Government Surveillance Frequently Asked Questions Documentation.

How are breach notifications addressed?
Reejig has comprehensive procedures in place to notify Customers in the event of a data breach of its systems as managed by its Computer Security Incident Response Team (CSIRT). Reejig commits contractually in its Data Processing Addendum to notifying Customers “without undue delay” which is the standard of notification required for processors in accordance with applicable law. Reejig has a formal Incident Management Process that guides the Reejig Computer Security Incident Response Team (CSIRT) in investigation, management, communication, and resolution activities.

Reejig will promptly notify the Customer in the event of any security breach of Reejig Services resulting in an actual or reasonably suspected unauthorized disclosure of Customer Data. Notification may include phone contact by Reejig Support, email to the Customer’s administrator and Security Contact (if submitted by Customer), and public postings on trust. Reejig.com. Regular updates are provided to engaged parties until issue resolution. Incident tracking and resolution is documented and managed within an internal ticketing system.

Can Personal Data be encrypted?
Yes. Reejig encrypts data both rest and in transit. Please see the Reejig Security page for more detail.

How long is personal data retained?
Customers choose how long to retain customer data, including personal data, on Reejig’s software. Unless otherwise specified in the customer’s agreement, Reejig does not delete customer data, including Personal Data, during a subscription term, unless the Customer instructs Reejig to do so. After a customer’s contract with Reejig terminates, Reejig deletes customer data, including personal data, in the manner described in a customer’s agreement.

How is personal data deleted when it is no longer needed?
Unless otherwise agreed in the agreement with a customer, Reejig deletes customer data within 30 days of the customer agreement’s termination.

How are requests from individuals (or data subjects) to have their personal data deleted managed?
As described in Reejig’s Data Processing Addendum, Reejig shall notify a customer if it receives a request to exercise rights related to the processing of personal data on Reejig’s software. Reejig’s Services provide functionality to enable the customer to respond to that request, but Reejig’s Data Processing Addendum also commits to provide reasonable assistance if needed.

Has Reejig appointed a Data Protection Officer?
Yes. Stephen Hanthorn is Reejig’s Data Protection Officer. He can be reached at privacy@Reejig.com.

Please provide an overview of how Reejig incorporates the principles of “privacy by design” into its product development.
Reejig works to incorporate privacy and data protection concepts from the inception of each new service or feature it offers, as well as existing offerings. Product managers and engineers who design our products are trained at least annually on data protection. In addition, Reejig’s software and services is supported by Reejig’s Head of Legal & Data Protection Officer who is knowledgeable about data protection and privacy, and who reviews and advises on the product’s functionality. Also, Reejig regularly considers input from its customers when designing and refining product functionality.

Please provide details of how Reejig is addressing its accountability and governance obligations under data privacy laws.
Reejig commits to meeting its accountability and governance obligations under applicable law and will take all appropriate related measures. These measures include implementing appropriate technical and organizational security measures (more fully described here: Reejig Security), undertaking privacy impact assessments (where appropriate) and maintaining records of processing, among others.

How does Reejig audit compliance with data protection controls?
Reejig’s legal team works closely with Reejig’s product developers on Reejig’s ‘privacy by design’ privacy strategy to ensure that it meets all of Reejig’s data protection obligations.

To ensure that our privacy commitments remain true over time, Reejig has a comprehensive range of compliance and internal accountability measures to ensure we protect Personal Data where it is accessed, stored, or processed such as our internal policies and standards and employee training.

Are Reejig employees bound by confidentiality obligations?
Yes, Reejig commits in its Data Processing Addendum to ensure that personnel have been appropriately trained, are reliable, and enter into confidentiality agreements. Employees also regularly undergo data protection and privacy training.

Reejig is committed to complying with all applicable laws governing the privacy,security, and treatment of its customers’ data. This includes existing and emerging laws in the United States, European Union, and other jurisdictions. Because these may vary across countries, Reejig has prepared these Frequently Asked Questions(“FAQs”)   addressing   common   data   privacy   inquiries   from   our   international customers and partners regarding Reejig’s position on government surveillance.

FAQ 1 – Does Reejig comply with the GDPR and other data privacy protection laws?

▪ Reejig complies with the local data privacy laws in each of the countries where   we   operate.   Our   internal   policies   are   designed   to   protect   our customers’   data   in   accordance   with   the   local   data   privacy   laws   in   the countries where their data is stored. This includes complying with the GDPR if customer data is subject to the GDPR.

FAQ 2 – Where does Reejig store European customers’ data?

▪ Reejig   stores   all   European   customers’   data   on   servers   that   are   in   the European Economic Area (EEA), which is governed by GDPR if a European customer so chooses. Reejig complies with the local data privacy laws,including GDPR, in each of the countries where customers’ data are stored.  

FAQ 3 – Does Reejig transfer European customers’ data to recipients in the U.S.?

▪ Currently, implementation services are provided from the United States.Otherwise, Reejig does not transfer European customers’ data to a recipient   the   U.S.   for   processing   either   by   Reejig   itself   or   by   any   other   dataprocessor.   Reejig ensures that all personal data is handled, processed,transferred, and stored in accordance with GDPR, including with the use of the latest Standard Contractual Clauses that the European Commission has approved for ensuring appropriate data protection safeguards.

FAQ 4 – Does Reejig use encryption to protect European customers 'data?

▪ Yes, Reejig encrypts all customer data both as data are stored on servers(i.e., at rest) and data they are transferred (i.e., in transit) to another entity.  

FAQ 5 – Does Executive Order 12333 require Reejig to participate inU.S. Government surveillance activities?

▪ Executive Order 12,333 governs the U.S. intelligence community’s foreign surveillance   and   collection   activities.   It   does   not   authorize   intelligence collection against U.S.-based targets or require U.S. companies like Rejigs US subsidiary to participate in intelligence gathering. Reejig has no role in or control over any U.S. intelligence community activities.

FAQ 6 – Does the Foreign Intelligence Surveillance Act (“FISA”) require Reejig to participate in U.S. Government surveillance activities?

▪ FISA   is   designed   to   investigate   foreign   spies   and   terrorist   organizations operating within the United States. The U.S. Government can only obtain information under FISA through a warrant issued by an independent federal court.  Reejig has not received such warrants, does not anticipate receiving any such warrants, and reserves the right to challenge them through juridical means when necessary.

FAQ 7 – Does Section 702 of FISA apply to Reejig?

▪ Section   702   of   FISA   authorizes   the   U.S.   government   to   apply   to   an independent federal court for a warrant to collect communications from electronic communications or internet service providers for the purpose of investigating   foreign   spies   and   terrorist   organizations.   Reejig   is   not   unelectronic   communications   or   internet   service   provider   and   has   never received a Section 702 warrant. In addition, based on public authorities andReejig’ experience, the personal data that Reejig maintains is highly unlikely to be of any interest to U.S. foreign intelligence investigation.

▪ Consistent   with   the   EDPB’s   recent  recommendations on   measures   that supplement transfer tools, Reejig has based this assessment on its own documented practical experiences, public statements issued by the U.S.government,   the   documented   experiences   of   other   actors   that   process similar   personal   data,   and   publicly   reported   cases   evidencing   the   past application   of   U.S.   national   security   laws,   including   FISA   Section   702. Furthermore, as the U.S. Department of Justice, the Office of the Director of National Intelligence, and the Department of Commerce made clear in a joint White Paper issued in September 2020, companies like Reejig that offer“ ordinary   commercial   products   or   services,”   and   whose   data   transfers“involve ordinary commercial information like employee, customer, or sales records,” have “no basis to believe U.S. intelligence agencies would seek to collect that data” through FISA Section 7021.

FAQ   8   –   Does   the   USA   PATRIOT   Act   and   its   successor   laws   require Rejig to participate in U.S. Government surveillance activities?

▪ These   laws   are   designed   to   investigate   money   laundering   and   terrorist financing. Collecting information under these laws typically requires a court order, geographic targeting order, or national security letter. Reejig has not received such orders, does not anticipate receiving any such orders, and reserves   the   right   to   challenge   them   through   juridical   means   when necessary.  Based on public authorities, the type of personal data that our customers generally collect and place into Reejig’ software is not of interest to U.S. intelligence agencies.

FAQ 9 – Does Reejig voluntarily participate in any U.S. Government or surveillance programs, including those administered by the National Security Agency (“NSA”)?

▪ Reejig is not a U.S. Government contractor, does not conduct business with the   U.S.   intelligence   community,   and   does   not   knowingly   or   voluntarily participate in any U.S. Government intelligence or surveillance programs,including surveillance and data collection programs administered by the NSA.

FAQ 10 – Does Reejig provide any customer data to any intelligence agencies?

▪ Reejig does not voluntarily provide customer data with any U.S. or foreign intelligence agencies.  Obtaining access to U.S.-based customer data would require a court order or similar directive under U.S. law. Reejig has never received, and does not anticipate receiving, such an order in connection with intelligence activities.

FAQ 11 – Does Reejig provide metadata or other similar content to U.S.intelligence agencies?

▪ Reejig does not provide customer metadata to any intelligence agencies or participate in any government programs involving the bulk collection of metadata.   Obtaining   access   to   U.S.-based   customer   metadata   typically requires a court order under U.S. law.  Reejig has never received, and does not   anticipate   receiving,   such   an   order   in   connection   with   intelligence activities.

FAQ 12 – Does Reejig share customer data stored outside the United States with any U.S. intelligence agencies?

▪ Reejig’s customers control how and where their data is stored and shared.We do not relocate customer data unless a customer specifically directs us todo so, and such activities are authorized under local privacy laws.  Nor do we share customer data with any government agency unless we are required to do so under applicable local laws.

FAQ 13 – Does Reejig build any “backdoors” into its software, source code, or systems that would allow U.S. intelligence agencies to access customer data?

▪ Reejig is committed to protecting the privacy and security of its customer's data, regardless of where that data is located. We do not provide any government agencies with software source code, encryption keys, or other forms of access for the purpose of accessing customer data. Reejig has never received, and does not anticipate receiving, requests for “backdoor” access to its software and systems.  

FAQ   14   –   Does   Reejig   work   with   any   vendors,   suppliers,   or   other business   partners   that   participate   in   intelligence   and   surveillance programs?

▪ Reejig’s business partners are commercial enterprises. As such, we are not aware of any vendors or suppliers participating in such programs. Even if our business partners were engaged in such activities, however, our systems are designed   to   prevent   them   from   accessing   customer   data   without   the customer’s prior authorization.  As noted, Reejig uses encryption for data at rest and in transit and uses Standard Contractual Clauses that the European Commission   has   approved   for   ensuring   appropriate   data   protection safeguards.

FAQ   15   –   Is   Reejig   subject   to   any   other   laws   that   would   allow governments access to customer data?

▪ Like any company, Reejig is subject to the local laws that apply in the countries   where   it   stores   customer   data.     This   means   that   Reejig   may occasionally need to comply with court orders, subpoenas, or search warrants related to routine law enforcement activities. Such measures are consistent with the GDPR’s long standing law enforcement exceptions.

FAQ 16 – How will Reejig protect customer data during law enforcement investigations?

▪ Reejig believes that any government request should be directed to the appropriate Reejig customer that owns the data.

▪ Reejig will work with its legal advisors to determine whether court orders,subpoenas, or other agency directives are authorized under the relevant national laws. If such orders are not consistent with applicable local law, thenReejig reserves the right to challenge them through judicial action or other means.

▪ If   Reejig  receives a government request for customer data,  Reejig will investigate:   (1)   whether   Reejig   can   seek   interim   measures   to   suspend enforcement of the government request until Reejig’ challenge has been resolved; (2) whether (a) applicable law prohibits Reejig from notifying the affected  customer  of the government  request  prior to producing  the requested  information,   and  if  not,  such  notice  will  include  all  relevant information that Reejig is legally permitted to provide to the customer, and(b) if a government request purports to require Reejig to delay customer notice indefinitely, whether Reejig can challenge it; and (3) whether, if a law enforcement or government agency contacts Reejig, Reejig can inform the agency that it is merely a processor of its customers’ data, and redirect the agency to make the request directly to the relevant customer.

Protecting your privacy and keeping your Personal Information (as hereinafter defined) safe is very important to us. This Privacy Policy describes how we handle the Personal Information provided to us, or otherwise collected by us, including through our website (the “Site”) or in connection with our software as a service application and platforms (the “Software Solution” and collectively with the Site, the “Services”). In this Privacy Policy, Reejig, we, us, or our means Reejig Pty Ltd., ABN 75 631 012 318, a private limited company established and resident under the laws of Australia, and Reejig Corp. a Delaware corporation. This Privacy Policy also describes certain legal rights you may have, subject to applicable law, and how you can exercise them.

For purposes of this Privacy Policy, “Personal Information” means information that relates to an identified or identifiable individual (such as a name, email address, or photograph) or as otherwise defined under applicable law.

How to use this Privacy Policy

This document is designed to help you understand how we collect, use, and safeguard your Personal Information. To make it easier to navigate, we have organized the policy into sections, as set out below.

Section A: Our Global Privacy Principles

Section A provides an overview of how we collect, process, and store your data. It also outlines what rights you have as a data subject, and how to contact us if you require more information.

Section B: Region Specific Privacy Principles and Notices

While our Global Privacy Principles generally apply to all our processing, these are subject to local data protection laws that may differ depending on your location. Please refer to Section B to understand how your individual rights may vary depending on where you’re located.

Section A: Our Global Privacy Principles

A1. Understanding Our Role: Data Controller vs Data Processor

When it comes to your personal information, Reejig may act in one of two roles: as a Data Controller or as a Data Processor

When Reejig is a Data Controller

When Reejig acts as a Data Controller, it means we are responsible for deciding how and why your Personal Information is collected and used. This typically happens in situations where you provide your information directly to us, for example, when you:

  • Visit our website and sign up for a newsletter.
  • Register for a Reejig-hosted event or webinar.
  • Contact us directly for information about our services.

When Reejig is a Data Processor

In many cases, Reejig acts as a Data Processor. This happens when we process your Personal Information on behalf of one of our customers, who is the Data Controller. This typically occurs in situations where your information is provided to us by our customers or we collect it on their behalf, such as when:

  • You apply for a job through one of our customers, and they use our platform to manage your application.
  • Your employer uses our software to manage your career development or work-related data.

As a Data Processor, we process your Personal Information strictly according to the instructions of our customer and the terms of the agreement between us. We do not decide how your data is used or why it is collected; that decision is made by the Data Controller. Our responsibility is to ensure that your data is handled securely, accurately, and only for the purposes set by the Data Controller. If you believe we process your Personal Information on behalf of one of our customers, please contact the customer directly, and we will support them in responding to your request. 

A2. Types of Personal Information We Collect

The types of Personal Information we may collect about you include:

Information Collected Directly – We may collect information that you provide to us voluntarily, such as your name, contact details, email address, phone number, or your preferences and/or opinions. Typically, you provide us with this information by completing forms (including on third-party platforms), subscribing for email updates, registering for events we host, or requesting a demo of our Software Solution. We may also collect information relating to your organizational affiliation and job title through our correspondence with you during the course of conducting business. 

Information Collected via Customers – To the extent permitted by our agreements with our customers, we may collect certain information such as your name, contact details, work experience, general work location, education, photo, social network information (such as a LinkedIn profile), and relevant skills and certifications to generate a personalized career pathway for you and to improve and train our AI models if you are an employee of a customer, or a candidate for employment via one of our customers.

Information Collected Through Automated Means via Your Interaction with the Site – We may collect additional information through automated means as you browse our Site. This includes information about your access and use of our Site, such as your browser session and geo-location data, device and network information, statistics on page views and sessions, acquisition sources, search queries and/or browsing behavior, and your communications with our Site. We may use cookies and similar technologies to manage and track this information. Please see the Cookies section for more information about how we use these technologies.

Information Collected from Third-Party Sources – To provide our Software Solution, we also collect certain publicly available professional information about individuals, such as education, work experience, skills, geographic location, and endorsements. We only collect and process such data where the individual has actively selected to make this data public in service of their career, network, or profession.

A3. How We Use Your Information

Reejig may collect, hold, use and disclose your Personal Information for the following purposes:

  • to enable you to access and use our Site;
  • to provide product and services information at your request;
  • to provide analytics or research to operate and improve our Site;
  • to respond to your requests, inquiries, comments, and suggestions;
  • to provide our Software Solution to our customers;
  • to identify and fix bugs and service errors;
  • to further our marketing and social strategies (including promoting our Services and using information that we learn about you to assist us in advertising our Services on third-party websites);
  • for internal record keeping and administrative purposes;
  • to protect against, identify, investigate, and respond to misuse of our Services or other unlawful activities;
  • to comply with any legal obligations and resolve any disputes that we may have; 
  • to consider you for employment with Reejig; and/or
  • to carry out any other purpose described to you at the time the information was collected.

A4. Data Sharing and Disclosure

Information from Third Parties: If we receive Personal Information about you from a third party, we will use and protect it as set out in this Privacy Policy. If you are a third party providing Personal Information about somebody else, you represent and warrant that you have such person’s consent to provide the Personal Information to us.

We may share Personal Information about you with certain third parties in the following circumstances:

  • We may share data between and among any current or future parents, subsidiaries, affiliates, and other companies under common control and ownership with Reejig.
  • We may share Personal Information with vendors, consultants, and other service providers who need to access the information to perform services on our behalf, such as providing cloud-hosting or cloud-storage services.
  • We may share your Personal Information with other third parties that provide advertising, campaign management, online analytics, and other services to help us reach individuals with relevant ads and measure our ad campaigns, or to better understand how individuals interact with our Services and other online services over time and across devices.
  • We periodically appoint digital marketing agents to conduct marketing activity on our behalf, and such activity may result in the compliant processing of Personal Information. 
  • We may share Personal Information with another company in connection with or during negotiations of any merger, acquisition, financing, re-organization, bankruptcy, sale of all or a portion of our assets, or transition of services to another provider.
  • We may share Personal Information when we believe it is necessary to comply with a legal obligation, including lawful requests from public authorities to meet national security or law enforcement requirements. We may also share Personal Information when we believe it is necessary to protect Reejig’s rights and property, to protect the safety of our users, and to defend against legal liability.
  • We may share Personal Information with third parties with your consent and at your direction, including if we notify you that the information you provide will be shared in a particular manner and you provide that information.  
  • We may also share aggregate or de-identify information, which cannot reasonably be used to identify you, for various purposes including compliance with various reporting obligations; for business or marketing purposes; or to assist third parties in understanding our users’ interests, habits, and usage patterns for certain programs, content, services, advertisements, promotions, and/or functionality available through the Services.

Links to Third-Party Services:Our Site may contain links to other websites, services, and applications (Third-Party Services). This Privacy Policy does not apply to those Third-Party Services. We do not have any control over them, and we are not responsible for the protection and privacy of any Personal Information which you provide to or through them.

Information from Third Parties: If we receive Personal Information about you from a third party, we will use and protect it as set out in this Privacy Policy. If you are a third party providing Personal Information about somebody else, you represent and warrant that you have such person’s consent to provide the Personal Information to us.

A5. International Data Transfer  

Personal Information we collect may be stored and processed for the purposes set out in this Privacy Policy in Australia, the United States, United Kingdom, Europe, where our customers decide to store their instance of our software, any other country where we have operations, or where we engage vendors or service providers including the Philippines and India. These countries may not have the same data protection laws as the country in which you originally provided the data. 

A6. Your Privacy Rights and Controlling Your Personal Information.  

Limiting Information We Collect. You can control the information we collect about you by choosing not to provide certain information in the case of the Site. However, this means that you may not be able to take full advantage of our Site and we may not be able to provide you with the product information you have requested.

Right to Know/Access: You may request details about the Personal Information that we hold about you using our contact details in section A12 below. We may request that you verify your identity to determine that you have the proper authorization to make the request. We may also refer you to the Data Controller, if we are processing your information on behalf of a customer. In some circumstances, we may refuse to provide you with such information if:

  • we reasonably believe that giving access would pose a serious threat to the health and safety to any individual or the public;
  • giving access would have an unreasonable impact on the privacy of other individuals;
  • the request for access is frivolous or vexatious;
  • the information relates to existing or anticipated legal proceedings between you and Reejig, and would not be accessible by discovery in those proceedings;
  • giving access would reveal commercially sensitive information or prejudice any negotiations between Reejig and another party;
  • giving access would contravene a court/tribunal order or be otherwise unlawful; or
  • giving access would be likely to prejudice an enforcement action by an enforcement body.

Right to Correct: If you believe that any Personal Information we hold about you is inaccurate, out of date, incomplete, irrelevant or misleading, please contact us using the details below and we will take reasonable steps to correct it. We may also refer you to the Data Controller, if we are processing your information on behalf of a customer.

Right to Delete/Be Forgotten: In some instances, you may be eligible to request that we delete your data. We will consider all requests and provide our response within the period stated by applicable law. We may also refer you to the Data Controller, if we are processing your information on behalf of a customer. Please note, however, that certain information may be exempt from such requests in some circumstances, which may include if we need to keep processing your information for our legitimate interest or to comply with a legal obligation.

Right to Restrict Cookies/Do Not Track: Reejig does not currently change its behavior in response to web browser “do not track” signals. However, you can configure most browsers to reject cookies or to notify you when you are sent a cookie, giving you a chance to decide whether to accept it. You can consult the help section of your browser to find out how to do this. Please note that if you choose to remove or reject cookies, you may not be able to use all features and functionality on the Site.

Right to Complain: If you believe that we have breached applicable data protection law or this Privacy Policy and wish to make a complaint, please contact us using the details below and provide us with full details of the alleged breach. We will promptly investigate your complaint and provide you with a response within a reasonable time (usually within 30 days). You also have the right to lodge a complaint with the authorities applicable to your situation. However, we invite you to contact us with any concern, as we would be happy to try to resolve it directly.

Right to Opt Out/Unsubscribe: If you would like to opt-out of receiving our marketing communications, you may do so at any time by contacting us using the details below or following the “unsubscribe” instructions provided in the communication. Please be aware that it may take up to 10 days for us to process your request, and you may continue receiving promotional communications form us during that period. If you opt out of receiving such communications, please be aware that we may continue to send you non-promotional emails (such as emails related to our business relationship or emails about changes to our legal terms). If you have previously agreed for us to use your Personal Information for direct marketing purposes, you may change your mind at any time by contacting us using the details below.

A7. How We Protect Protecting Your Personal Information  

Reejig has implemented security controls and procedures for protecting your Personal Information from misuse, interference, unauthorized access, modification, or disclosure. This is done using information technology security systems, internal staff access controls, ongoing security training and independent privacy and security audits. We have established procedures for identifying and reporting privacy breaches and for receiving and responding to complaints and inquiries. We also conduct regular reviews of our Privacy Policy and the practices, procedures, and systems implemented under our Privacy Framework.

Although we make reasonable efforts to protect your Personal Information from loss, misuse, or alteration by third parties, you should be aware that there is always some risk involved in transmitting information over the internet and storing information electronically. Reejig cannot and does not guarantee absolute security.

A8. Data Retention  

We only keep your Personal Information for so long as reasonably necessary for the purposes described in this Privacy Policy, as required by law, or as necessary to resolve disputes and enforce our rights and agreements. To dispose of Personal Information, we may anonymize it, delete it, or take other appropriate steps. Data may persist in copies made for backup and business continuity purposes for limited, but additional time periods after deletion due to all instances of your Personal Information not being deleted all at once.

A9. Use of Cookies  

Our Site uses ‘cookies’ to help you personalize your online experience. A cookie is a text file or a packet of information that is placed on your hard disk by a web page server to identify and interact more effectively with your computer. Cookies are uniquely assigned to you and one of their primary purposes is to provide a convenience feature to save you time.

One purpose of a cookie is to tell the web server that you have returned to a specific page. For example, a cookie may help Reejig record your specific information on subsequent visits. When you return to the same website, information you previously provided can be retrieved, so you can easily use the Reejig features that you have customized. Cookies may also allow third parties, such as Google, to cause our content or advertisements to appear on your social media and online media feeds as part of our retargeting campaigns. If you choose to provide our Site with Personal Information, this information may be linked to the data stored in the cookie.

Our Site may also use web beacons in conjunction with cookies. Web beacons (also known as Clear GIFs) are small pieces of code placed on a web page to monitor a visitor’s behavior and collect data about the visitor’s viewing of a web page. For example, web beacons can be used to count the users who visit a web page or to deliver a cookie to the browser of a visitor viewing that page.

Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies, if you prefer. If you choose to decline cookies, you may not be able to fully experience the interactive features of the Reejig website.

Google has developed the Google Analytics opt-out browser add-on. If you want to opt-out of Google Analytics, you can download and install the add-on for your browser here.

You may withdraw Your consent at any time by deleting Your Cookies using your internet browser settings.

Additionally, some advertising networks offer a way to opt out of targeting advertising. If You would like to find out more information, please visit https://www.youradchoices.com/ and/or http://www.youronlinechoices.com.

A10. Children’s Privacy  

Our Services are intended for adults, and we do not knowingly collect Personal Information from children. If you are a parent or legal guardian and think that your child under 13 (or a higher age threshold where applicable) has given us Personal Information without your consent, please contact us at privacy@reejig.com.

A11. Modifications to this Privacy Policy

We may modify this Privacy Policy from time to time. The most current version of the Privacy Policy will govern our collection, use, and disclosure of information about you. We recommend you check our Site regularly to ensure you are aware of our current Privacy Policy. If we make material adverse changes to this Privacy Policy, we will notify you by email and/or by posting a notice of the changes in this Privacy Policy prior to or on the effective date of the changes. By continuing to access or use the Site after those changes become effective, you agree to the revised Privacy Policy to the extent permitted by applicable law. 

A12. How to Contact Us

We are committed to protecting your Personal Information and ensuring that your privacy is respected at all times. If you’re ever unsure about how your data is being handled, please feel free to reach out to us or the relevant Data Controller. You can learn more about how to submit a data rights request, or appeal denial of a request, through Reejig’s Support Center. You may also send your question or request by emailing our Data Protection Officer at privacy@Reejig.com.

Section B: Region Specific Privacy Principles and Notices

While our Global Privacy Principles generally apply to all our processing, these are subject to local data protection laws that may differ depending on your location. Please review the section that applies to your location for more details.

B1. EU U.S. Data Privacy Framework Principles

Commitment: Reejig Corp. (in this section only, “Reejig”) adheres to the EU-U.S. Data Privacy Framework (the "EU-U.S. DPF”), the UK Extension to the EU-U.S. Data Privacy Framework (the “UK Extension to the EU-U.S. DPF”), and the Swiss-U.S. Data Privacy Framework (the “Swiss-U.S. DPF”) (and each of the foregoing, collectively, the “Frameworks”) with regard to personal data transferred from the European Union, the United Kingdom, and Switzerland. To learn more about the Data Privacy Framework program, and to view our certification, please visit https://www.dataprivacyframework.gov/s/.

In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF, Reejig commits to cooperate and comply respectively with the advice of the panel established by the EU data protection authorities (DPAs) and the UK Information Commissioner’s Office (ICO) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved complaints concerning our handling of human resources data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF in the context of the employment relationship.

Purposes of data processing: Reejig processes data submitted by customers for the purpose of providing Reejig’s online services to our customers. To fulfill these purposes, Reejig may access the data to provide the services, to correct and address technical or service problems, to respond to customer support matters, or to follow instructions of Reejig’s customer who submitted the data, or in response to contractual requirements.

Data processed: Reejig provides online tools that our customers use to manage their employees and job applicants. In providing these tools, Reejig processes data our customers submit to our services or instruct us to process on their behalf. While Reejig’s customers decide what data to submit, it typically includes information about their employees and candidates such as resume or LinkedIn type data. Reejig may also process data that candidates and employees themselves make publicly available on professional websites.

Your rights to access, to limit use, and to limit disclosure: EU, UK, and Swiss individuals have rights to access personal data about them, and to limit use and disclosure of their personal data. With our Data Privacy Framework self-certification, Reejig has committed to respect those rights. Because Reejig personnel have limited ability to access data our customers submit to our services, if you wish to request access, to limit use, or to limit disclosure, please provide the name of the Reejig customer who submitted your data to our services. We will refer your request to that customer and will support them as needed in responding to your request.

U.S. Federal Trade Commission enforcement: Reejig’s privacy commitments in this Privacy Policy are subject to the investigatory and enforcement powers of the Federal Trade Commission of the United States.

Inquiries and Complaints:You may invoke binding arbitration under the Frameworks. For more information on this option, please see Annex 1 of the EU-U.S. Data Privacy Framework Principles.

Compelled Disclosure: Reejig has a requirement to disclose Personal Information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

Onward Transfers: Reejig remains liable to you in case of onward transfers to third parties. Such third parties are viewable here: https://www.reejig.com/subprocessors. These third parties help Reejig support our customers.

B2. Additional Information for United States Residents
California Residents: Your California Privacy Rights

If you are a resident of California, California law requires us to disclose the following information with respect to our collection, use, and disclosure of your Personal Information.

Notice of collection: Although the information we collect is described in greater detail in section A2 above, the categories of Personal Information that we have collected – as described by California law – including in the past 12 months are:

  • Identifiers: such as name, email address, mailing address, and IP address. We collect this information directly from you or from third-party sources.
  • Other individual customer records: such as telephone number, education, and employment history. This category includes Personal Information protected under pre-existing California law (Cal. Civ. Code § 1798.80(e)), and overlaps with other categories listed in this Privacy Policy. We collect this information directly from you or from third-party sources.
  • Protected Classifications, such as race or gender expression to the extent such information is provided by our Customers or can be inferred from publicly available professional data. We collect this information from third-party sources.
  • Commercial information, such as subscription information and engagement with our Service. We collect this information directly from you.
  • Internet activity, such as referring and exiting pages and your interactions with our Service. We collect this information directly from your device.
  • Geolocation data, such as IP address. We collect this information directly from your device.
  • Employment information, such as company name and job title. We collect this information directly from you or from third-party sources.
  • Education information, such as degrees obtained, or universities attended. We collect this information from third-party sources.

Inferences, such as information about your interests and preferences. We collect this information directly from you or through automatic data collection means..  

Business or commercial purpose for collecting and using Personal Information. We collect each category of Personal Information listed above for the business or commercial purposes described in section A3..

Categories of sources of Personal Information. We collect each category of personal information listed above directly from you, through automatic data collection means, or through the third-party sources described in section A2.

Categories of personal information disclosed. In the preceding 12 months, we have disclosed the categories of Personal Information listed above in the circumstances described in section A3..

Categories of third parties with whom we share Personal Information. We may share each category of Personal Information listed above with the third parties described in section A3 and A4..

Right to know. California residents may request disclosure of the specific pieces and/or categories of personal information that we have collected about them, the categories of sources for that Personal Information, the business or commercial purposes for collecting the information, the categories of personal information that we have disclosed, and the categories of third parties with which the information was shared. To request this information please contact us at privacy@reejig.com.

Right to opt-out. The term “sale” is defined broadly in the CCPA. Under this definition, the provision of our Services may constitute a sale of personal information.  California residents are entitled to opt out of the “sale” of data at any time. To exercise this right, please contact us at privacy@reejig.com.

Deletion. You may request that we delete the personal information we have collected about you (subject to certain exceptions). Please be aware that we may keep certain information as required or permitted by applicable law. To exercise this right, please contact us at privacy@reejig.com.

Authorized agent. You may designate an authorized agent to make a request on your behalf. To do so, you must provide a valid power of attorney, the requester’s valid government-issued identification, and the authorized agent’s valid government-issued identification. To verify the request, we may contact you directly.

Right to non-discrimination. Limiting use of, or deleting, your personal information may affect features and uses that rely on that information. However, we will not discriminate against you for exercising any of your rights, including denying you goods or services, providing you with a different level or quality of services, or charging you different prices or rates for services.

Shine the Light. California Civil Code § 1798.83, also known as the “Shine the Light” law, permits California residents to request and obtain from us, once a year and free of charge, information about categories of personal information (if any) we disclosed to third parties for direct marketing purposes and the names and addresses of all third parties with which we shared personal information in the immediately preceding calendar year. If you are a California resident and would like to make such a request, please submit your request in writing to us using the contact information provided in this Privacy Policy.

You can learn more about how to submit a data rights request, or appeal denial of a request, through Reejig’s Support Center. You may also send your request by email to privacy@reejig.com.

Nevada Residents: Your Nevada Privacy Rights

Nevada law (SB 220) requires website operators to provide a way for Nevada consumers to opt-out of the sale of certain information that the website operator may collect about them. Reejig does not sell your personal information to third parties as defined in Nevada law and will not do so in the future without providing you with notice and an opportunity to opt-out of such sale as required by law. You can learn more about how to submit a data rights request, or appeal denial of a request, through Reejig’s Support Center. You may also send your request by email to privacy@reejig.com.

Virginia Residents: Your Virginia Privacy Rights

Under Virginia’s Consumer Data Protection Act (“CDPA”), Virginia residents have certain rights around Reejig’s collection, use, and sharing of their Personal Information.
Reejig does not sell your Personal Information and will not do so in the future without providing you with notice and an opportunity to opt-out of such sale as required by law. Similarly, Reejig does not engage in profiling in furtherance of decisions that produce legal or similarly significant effects. Reejig may engage in “targeted advertising” as that term is defined in the CDPA. You have the right to opt-out of targeted advertising. Reejig collects various categories of Personal Information when a customer uses the Service. A more detailed description of the information Reejig collects and how we use it, and the third parties we share data with, is provided in section A2 - A4. 

If you are a resident of Virginia, you have the right to (1) request to know what personal information has been collected about you, and to access that information; (2) request to correct inaccuracies in your Personal Information; (3) request deletion of your personal information, though exceptions under the CDPA and other laws may allow Reejig to retain and use certain personal Information notwithstanding your deletion request; and (4) obtain a copy of your personal Information. You can learn more about how to submit a data rights request, or appeal denial of a request, through Reejig’s Support Center. You may also send your request by email to privacy@reejig.com.

Colorado Residents: Your Colorado Privacy Rights

Under Colorado’s Consumer Privacy Act (“CPA”), Colorado residents have certain rights around Reejig’s collection, use, and sharing of their personal information. Reejig does not sell your personal information and will not do so in the future without providing you with notice and an opportunity to opt-out of such sale as required by law. Similarly, Reejig does not engage in profiling in furtherance of decisions that produce legal or similarly significant effects. Reejig may engage in “targeted advertising” as that term is defined in the CPA. You have the right to opt-out of targeted advertising by contacting us a privacy@reejig.com

Reejig collects various categories of Personal Information when you use the Service, including identifiers, commercial information, internet or other electronic network or device activity information, geolocation data, and professional information. A more detailed description of the information Reejig collects and how we use it, and third parties with whom we share personal Information, and what information may be shared under different circumstances is provided above in section A2-A4.


If you are a resident of Colorado, you have the right to (1) request to know what personal Information has been collected about you, and to access that information; (2) request to correct inaccuracies in your personal Information; (3) request deletion of your Personal Information, though exceptions under the CPA and other laws may allow Reejig to retain and use certain personal Information notwithstanding your deletion request; and (4) obtain a copy of your personal Information. You can learn more about how to submit a data rights request, or appeal denial of a request, through Reejig’s Support Center. You may also send your request by email to privacy@reejig.com

Connecticut Residents: Your Connecticut Privacy Rights

Under Connecticut’s Data Privacy Act (“CTDPA”), Connecticut residents have certain rights around Reejig’s collection, use, and sharing of their personal information. Reejig does not sell your personal information and will not do so in the future without providing you with notice and an opportunity to opt-out of such sale as required by law. Similarly, Reejig does not engage in profiling in furtherance of decisions that produce legal or similarly significant effects. Reejig may engage in “targeted advertising” as that term is defined in the CTDPA. You have the right to opt-out of targeted advertising by contacting us at privacy@reejig.com

Reejig collects various categories of Personal Information when you use the Service, including identifiers, commercial information, internet or other electronic network or device activity information, geolocation data, and professional information. A more detailed description of the information Reejig collects and how we use it, and third parties with whom we share Personal Information, and what information may be shared under different circumstances is provided above in section A2-A4.


If you are a resident of Connecticut, you have the right to (1) request to know what personal Information has been collected about you, and to access that information; (2) request to correct inaccuracies in your personal Information; (3) request deletion of your personal Information, though exceptions under the CTDPA and other laws may allow Reejig to retain and use certain personal Information notwithstanding your deletion request; and (4) obtain a copy of your personal Information. You can learn more about how to submit a data rights request, or appeal denial of a request, through Reejig’s Support Center. You may also send your request by email to privacy@Reejig.com.

New York Residents: Your New York Privacy Rights

If you are a resident of New York, your privacy rights are protected under the New York Stop Hacks and Improve Electronic Data Security Act (‘SHIELD Act’) and other applicable laws.

Reejig has implemented reasonable safeguards to protect the security, confidentiality and integrity of your Personal Information. Please refer to section A7 for more information on our data security practices. In the event of a data breach affecting your Personal Information, Reejig will notify you without unreasonable delay and in accordance with the SHIELD Act.

If you are a resident of New York, you have the right to (1) request to know what personal Information has been collected about you, and to access that information; (2) request to correct inaccuracies in your personal Information; (3) request deletion of your personal Information, though exceptions under the SHIELD Act and other laws may allow Reejig to retain and use certain personal Information notwithstanding your deletion request; and (4) obtain a copy of your personal Information. You can learn more about how to submit a data rights request, or appeal denial of a request, through Reejig’s Support Center. You may also send your request by email to privacy@Reejig.com.  

US Residents outside of these states

For all other US residents, you can find out more information by visiting the website of the Federal Trade Commission or the relevant regulatory authorities for your state.

B3. Additional Information for EU & UK Residents

In the EU, we operate under the General Data Protection Regulations (GDPR). In the UK, we operate under the Data Protection Act 2018 which is the UK’s implementation of the GDPR. We will only collect, use, and share your Personal Information where we are satisfied that we have an appropriate legal basis to do so and only for the purposes as set out above.

To the extent that we process publicly available professional data relating to EU & UK residents, we do so on the grounds that it furthers our customers’ legitimate interests in sourcing and finding talent and opening opportunities for individuals to access jobs suited to their current skills and capabilities. We also pursue our own legitimate interests in developing and improving products and services to serve this market.

Reejig respects your privacy rights. You have a right to object (opt-out) to our processing of your information at any time by submitting a request to privacy@reejig.com. If you would like to find out more about the legal basis upon which we process Personal Information, please contact us.

If you are an EU resident and would like further information about your privacy rights, please contact your local Data Protection Authority (DPA). You can find your local DPA using this online tool.

If you are a UK resident and would like further information about your privacy rights, please contact the UK Information Commissioner’s Office or visit: https://www.gov.uk/data-protection/.

European Residents: Your Privacy Rights and International Data Transfer

If you are a European Resident, you have the right to access your Personal Information, and the right to request that we correct, update, or delete your Personal Information. You can object to the processing of your Personal Information, ask us to restrict processing of your Personal Information, and request portability of your Personal Information. Similarly, if we have collected and processed your Personal Information with your consent, then you can withdraw your consent at any time. Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, nor will it affect processing of your Personal Information conducted in reliance on lawful processing grounds other than consent. You can opt-out of marketing communications at any time by clicking on the “unsubscribe” or “opt-out” link in the marketing emails we send you. 

If you have any questions or comments about the processing of your Personal Information, you may contact us as described in this Privacy Policy. Please note that if you are a resident of the EEA or Switzerland, the “data controller” responsible for protecting your Personal Information related to the Site is Reejig Pty Ltd., a private company established and resident under the laws of New South Wales, Australia.
 If you are a resident of the United Kingdom, the “data controller” responsible for protecting your Personal Information relating to the Site is Reejig Pty Ltd., a limited liability company established and resident under the laws of New South Wales, Australia. 

For European Residents, please note that the Personal Information we obtain from or about you may be transferred, processed, and stored outside of the EEA, United Kingdom or Switzerland for the purposes described in this Privacy Policy, including in the United States of America. We take the privacy of our users seriously and therefore take steps to safeguard your information, including ensuring an adequate level of data protection in accordance with E.U. and United Kingdom standards in effect as of the date of this Privacy Policy. These steps include use of Standard Contractual Clauses for transfers of Personal Information between our group companies, which require all group companies to protect European Residents’ Personal Information in accordance with applicable data protection laws. We have implemented similar appropriate safeguards with our third-party service providers and partners and further details can be provided upon request.

For European Residents, our legal basis for collecting and using the information described above will depend on the specific information concerned and the context in which we collect it. We, however, will normally collect Personal Information from you only where we have your consent to do so, where we need the Personal Information to perform a contract with you, or where the processing is in our legitimate interests and not overridden by your data protection interests or fundamental rights and freedoms. In some cases, we may also have a legal obligation to collect Personal Information from you or may otherwise need the Personal Information to protect your vital interests or those of another person (for instance, to prevent, investigate, or identify possible wrongdoing in connection with the Service or to comply with legal obligations). If we ask you to provide Personal Information to comply with a legal requirement or to perform a contract with you, we will make this clear at the relevant time and advise you whether the provision of your Personal Information is mandatory or not (as well as of the possible consequences if you do not provide your Personal Information). If we collect and use your personal Information in reliance on our legitimate interests (or those of any third party), this interest will typically be to operate our Services, communicate with you in relation to our Services, or for our other legitimate commercial interests, for instance, when responding to your queries, to analyze and improve our platform, engage in marketing, or for the purposes of detecting or preventing fraud. If you have questions about or need further information concerning the legal basis on which we collect and use your Personal Information, please contact us as described in this privacy policy.

B4. Additional Information for Australian Residents

In Australia, we operate under the Privacy Act 1988, including the Australian Privacy Principles (APPs). If you are an Australian resident and would like further information about your privacy rights, please visit the website for the Office of the Australian Information Commissioner at https://www.oaic.gov.au/privacy/.

B5. Additional Information for New Zealand Residents

In New Zealand, we operate under the Privacy Act 2020, including the New Zealand Privacy Principles (NZPPs). If you are a New Zealand resident and would like further information about your privacy rights, please visit the website for the Office of the New Zealand Privacy Commissioner at https://www.privacy.org.nz/.

B6. Additional Information for Nigerian Residents

Reejig is committed to protecting the Personal Information of Nigerian residents in accordance with the Nigerian Data Protection Act 2023 (NDPA). As a data processor, we act under the authority of the data controller, processing Personal Information as directed by our customers. The data controller remains responsible for obtaining any necessary consents and ensuring that the processing of Personal Information complies with the NDPR.

As a Nigerian resident, you have the right to access, correct, and request the deletion of your data, as outlined in section A6. Any requests to exercise these rights should be directed to the relevant data controller (Reejig’s customer), who is responsible for managing and responding to such requests. Reejig will support the data controller as needed in fulfilling these obligations.

Personal Information processed by Reejig may be transferred to and stored in locations outside of Nigeria, including Australia, as directed by the data controller. Reejig ensures that such transfers comply with the NDPR and that adequate safeguards are in place. Personal Information will be retained only as directed by the data controller, in line with the purposes for which it was collected, or as required by law.

If you are a Nigerian resident and would like further information about your privacy rights, please visit the website for the Office of the Nigeria Data Protection Commission at https://ndpc.gov.ng/ .

This website (Site) is operated by Reejig Pty Ltd ABN 75 631 012 318 (we, our or us). By accessing and/or using our Site, you agree to these terms of use and our Privacy Policy (Terms). We may vary these terms from time to time by publishing an updated version on our Site. We recommend that you check these Terms regularly to ensure that you are aware of any changes as materials and information on this Site are subject to change without notice.

General Restrictions

In using this Site, you must not:

  • violate any applicable laws;
  • do anything that would constitute a breach of an individual’s privacy or other legal rights;
  • distribute viruses, corrupted files or any other software or program that may damage, modify, tamper with, or interfere with our Site;
  • use our Site to send unsolicited email messages; or
  • facilitate or assist a third party to do any of the above acts.
General Information

The Content on this Site is not comprehensive and is for general information purposes only. It does not take into account your specific needs, objectives and circumstances, and it is not advice. While we use reasonable attempts to ensure the accuracy and completeness of the Content, we make no representation or warranty in relation to it, to the maximum extent permitted by law.

License to use the Site

We grant you a non-exclusive, royalty-free, revocable, worldwide, non-transferable license to use our Site in accordance with these Terms. All other uses are prohibited without our prior written consent.

Intellectual Property Rights

Unless otherwise stated, we own or license all rights, title and interest (including intellectual property rights) in our Site and all of the Content. Your use of our Site and any of the Content does not grant or transfer to you any rights, title or interest them. You must not:

  • copy or use, in whole or in part, any Content;
  • reproduce, distribute, disseminate, sell, publish, broadcast or circulate any Content to any third party; or
  • breach any intellectual property rights connected with our Site or the Content, including (without limitation) altering or modifying any of the Content, causing any of the content to be framed or embedded in another website or platform, or create derivative works from the Content.
Links to Third Parties

Our Site may contain links to websites operated by third parties. Unless expressly stated otherwise, we do not control, endorse or approve, and are not responsible for, the content on those websites. You should make your own investigations with respect to the suitability of those websites.

Indemnity

To the maximum extent permitted by law, you must indemnify us, and hold us harmless, against any Liability suffered or incurred by us arising from or in connection with your use of our Site or any breach of these Terms or any applicable laws by you. This indemnity is a continuing obligation, independent from the other obligations under these Terms, and continues after these Terms end. It is not necessary for us to suffer or incur any Liability before enforcing a right of indemnity under these Terms.

Limitation of Liability

To the maximum extent permitted by law, we are not responsible for any loss, damage or expense, whether directly or indirectly suffered by you or any third party, arising from or in connection with your use of our Site and/or the Content, including if the Content is incorrect, incomplete or out-of-date.

General

If a provision of these Terms is held to be unenforceable, that provision must be read down as narrowly as necessary to allow it to be valid or enforceable. If it is not possible to read down (in whole or in part) a provision, that provision (or that part of that provision) shall be severed without affecting the validity or enforceability of the remainder of that provision or the rest of these Terms. These Terms are effective until terminated by us, which we may do at any time and without notice to you. In the event of termination, all restrictions imposed on you by these Terms and limitations of liability set out in these Terms will survive. Your use of our Site and these Terms are governed by the laws of New South Wales, Australia, and you irrevocably submit to the exclusive jurisdiction of the courts of New South Wales, Australia.