Legal
Privacy Policy
How we protect and respect your personal data
Last updated: March 1, 2026
Quick Navigation
- 1Overview
- 2Information Collection
- 3How We Use
- 4Information Sharing
- 5Data Security
- 6Data Retention
- 7Your Privacy Rights
- 8Cookies & Tracking
- 9Third-Party Services
- 10Google API Services
- 11AI & Automated Processing
- 12International Transfers
- 13Children's Privacy
- 14California Rights (CCPA/CPRA)
- 15GDPR Rights (EU)
- 16Changes to This Policy
Overview
Employment Networks, Inc. (“Splits Network,” “we,” “us,” or “our”) operates a split-fee recruiting marketplace that connects recruiters, candidates, and companies. We are committed to protecting your privacy and being transparent about how we handle your personal information in compliance with GDPR, CCPA, and other applicable privacy regulations.
This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our websites or use our services, including:
Our commitments:
- Your data is treated with utmost care and respect
- We comply with GDPR, CCPA/CPRA, and other applicable privacy regulations
- You have full control over your personal information
- We never sell your personal data to third parties
- Transparency in all data processing activities
Information We Collect
You Provide
- Contact information (name, email, phone)
- Account details (job title, company)
- Resumes, CVs, and professional profiles
- Job descriptions and requirements
- Communications and support requests
- Payment and billing information
Automatically
- IP address and geographic location
- Browser type and device information
- Operating system and screen resolution
- Usage analytics via Google Analytics (GA4)
- Session recordings via Microsoft Clarity
- Authentication data via Clerk
Third Parties
- Social login via Clerk (Google, LinkedIn, SSO)
- LinkedIn professional profile import
- Background and employment verification
- Integration partner data (ATS, HR platforms)
How We Use Your Information
Service Delivery
Operating the platform, managing accounts, facilitating candidate-to-job matching, enabling split-fee agreements, and processing payments through Stripe
Analytics & Improvement
Understanding usage via Google Analytics and Microsoft Clarity, identifying UX issues, developing new features, and improving platform functionality
Communications
Transactional emails via Resend for account activity, job opportunities, agreement updates, and platform notifications. Marketing only with consent
Legal Compliance
Meeting regulatory obligations, enforcing terms of service, detecting and preventing fraud, and responding to valid legal process
AI-Powered Features
Candidate matching, job recommendations, and AI assistant powered by OpenAI. Candidate data is anonymized before AI processing
Payment Processing
Billing, invoicing, and split-fee payment distribution through Stripe. Card details are never stored on our servers
Information Sharing
We share information only when necessary:
Trusted providers who process data on our behalf (Clerk, Stripe, Supabase, Resend, Google Analytics, Microsoft Clarity, OpenAI), subject to strict data processing agreements
When required by law, subpoena, court order, or to protect rights, property, or safety of Employment Networks, our users, or the public
Candidate profiles shared with recruiters and companies during the matching process. Recruiter information shared to facilitate split-fee partnerships
In connection with a merger, acquisition, reorganization, or sale of assets, your data may be transferred as part of that transaction
We never sell your data
Your personal information is never sold to third parties for advertising or marketing purposes. We enter into data processing agreements with all service providers.
Data Security
Encryption in Transit
All data encrypted using TLS 1.3 for transit between your browser and our servers
Encryption at Rest
AES-256 encryption for all stored data in our Supabase PostgreSQL database
PCI DSS Compliance
Payment data processed in PCI DSS-compliant environments through Stripe
Access Control & MFA
Role-based access controls and multi-factor authentication through Clerk
Row-Level Security
Supabase row-level security policies ensure data isolation between tenants
Regular Audits
Ongoing security audits, penetration testing, vulnerability assessments, and dependency updates
Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected.
Active Accounts
Duration of accountRetained while your account is active. Request deletion anytime via account settings or by contacting us.
Inactive Accounts
3 years, then 60-day noticeAccounts inactive for more than three years may be scheduled for deletion. We send a 60-day notice before any deletion occurs.
Financial Records
7 yearsPayment history and split-fee agreement records retained to comply with tax, accounting, and regulatory requirements.
Google Analytics (GA4)
14 monthsAnalytics data collected through GA4 is retained for 14 months per Google's data retention settings.
Microsoft Clarity
30 daysSession recordings and heatmap data are retained for 30 days by Microsoft Clarity.
Anonymized Data
IndefiniteAnonymized and aggregated data may be retained indefinitely for statistical analysis and industry reporting.
Your Privacy Rights
Regardless of where you are located, we provide all users with the following rights:
Right to Access
Request a copy of your personal data in a machine-readable format. We respond within 30 days.
Right to Correction
Request correction of inaccurate or incomplete personal information, or update directly via account settings.
Right to Deletion
Request deletion of your data, subject to exceptions for legal obligations, active transactions, or fraud prevention.
Right to Data Portability
Receive your data in a structured, commonly used, machine-readable format for transfer to another service.
Right to Restrict Processing
Request limits on how we process your data when you contest accuracy or object to processing.
Right to Object
Object to processing for direct marketing or where we rely on legitimate interests as the legal basis.
Right to Withdraw Consent
Withdraw consent at any time where processing is based on consent. Withdrawal does not affect prior lawful processing.
To exercise any of these rights, contact us at privacy@splits.network. We will respond within 30 days and may verify your identity before processing your request.
Third-Party Services
Our platform integrates with the following third-party services. Each provider maintains their own privacy policy governing how they process your data.
Clerk
Authentication, identity management, SSO, social login
Data processed: Name, email, profile image, session data, login history
View Privacy PolicyStripe
Payment processing, billing, invoicing
Data processed: Payment method details, transaction history, billing address
View Privacy PolicyGoogle Analytics (GA4)
Page views, user interactions, demographics, device info
Data processed: Browsing behavior, session duration, geographic location
View Privacy PolicyMicrosoft Clarity
Session recordings, heatmaps, click tracking, scroll depth
Data processed: User interaction recordings, mouse movements, click patterns
View Privacy PolicyOpenAI / ChatGPT
AI-powered candidate matching, job recommendations, AI assistant
Data processed: Job descriptions, anonymized candidate profiles, AI chat messages
View Privacy PolicySupabase
Database infrastructure, real-time data, file storage
Data processed: All platform data stored in encrypted PostgreSQL database
View Privacy PolicyResend
Transactional and marketing email delivery
Data processed: Email addresses, message content, delivery status
View Privacy PolicyProfessional network integration, profile import
Data processed: Professional profile data, work history, connections (with consent)
View Privacy PolicyGoogle Calendar
Interview scheduling and calendar sync (recruiter integration)
Data processed: Calendar event details, free/busy availability, calendar list
View Privacy PolicyGmail (Google)
Email tracking and communication management (recruiter integration)
Data processed: Email messages read and sent via the platform on behalf of the connected recruiter
View Privacy PolicyGoogle API Services
Splits Network's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
Google Calendar — schedule and display interview events, check free/busy availability
calendar.events.owned, calendar.events.freebusy, calendar.calendarlist.readonly
Gmail — send and read recruiting emails on behalf of the recruiter
gmail.modify
Limited Use Compliance
Google user data is used solely to provide user-facing features prominent in the requesting application's user interface. Recruiters can revoke access at any time from Account Settings or from their Google Account permissions page.
AI & Automated Processing
Splits Network uses artificial intelligence powered by OpenAI/ChatGPT to enhance platform services, including candidate matching, job recommendations, and our AI assistant.
Data Processing
AI analyzes job descriptions and anonymized candidate profiles. Data may be transmitted to OpenAI servers for processing over encrypted connections.
No Third-Party Training
Your personal data is never used to train third-party AI models. We have a data processing agreement with OpenAI that prohibits this.
Human Review
AI outputs are recommendations only. No automated decisions with legal or similarly significant effects are made without human review, especially for employment-related decisions.
Opt-Out
You can opt out of AI-powered features at any time through your account settings or by contacting privacy@splits.network.
International Data Transfers
Employment Networks, Inc. is based in the United States. Your information may be transferred to, stored in, and processed in the United States and other countries where our service providers operate.
EU-approved clauses with service providers requiring them to protect your data to European standards
Additional technical and organizational measures including encryption, pseudonymization, and strict access controls
Binding contractual commitments with all service providers regarding data handling, security, and breach notification
Children's Privacy
Our services are designed for professional use and are not intended for individuals under the age of 16. We do not knowingly collect, solicit, or maintain personal information from anyone under 16 years of age.
If we become aware that we have collected personal information from a child under 16, we will take immediate steps to delete that information. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@splits.network.
California Rights (CCPA/CPRA)
If you are a California resident, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) provide you with additional rights:
Right to Know
Request disclosure of what personal information we collect, use, disclose, and sell
Right to Delete
Request deletion of personal information we have collected from you
Right to Correct
Request correction of inaccurate personal information
Right to Opt-Out of Sale
We do not sell your personal information. No opt-out action is needed.
Right to Limit Sensitive Info
Limit the use and disclosure of sensitive personal information
Right to Non-Discrimination
We will not discriminate against you for exercising any of your CCPA/CPRA rights
To exercise your California privacy rights, contact us at privacy@splits.network. We will respond to verifiable consumer requests within 45 days.
GDPR Rights (EU)
If you are in the European Economic Area (EEA), we process your personal data under the following lawful bases:
Contract Performance
Processing necessary to provide our platform services, manage your account, and fulfill split-fee agreements
Legitimate Interests
Platform improvement, fraud prevention, security monitoring, and analytics (balanced against your privacy rights)
Consent
Marketing communications, non-essential cookies, AI-powered features, and LinkedIn profile import
Legal Obligation
Tax reporting, financial record-keeping, and responding to valid legal process
Data Protection Officer
Contact our DPO at dpo@splits.network. We respond to GDPR requests within 30 days. You also have the right to lodge a complaint with your local supervisory authority if you believe your data protection rights have been violated.
Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. For material changes, we will provide at least 30 days' advance notice via email or a prominent notice on our platform before the changes take effect.
Previous versions of this policy are available upon request by contacting legal@splits.network. We encourage you to review this policy periodically to stay informed about how we protect your information.
Questions About Privacy?
Mailing Address
Employment Networks, Inc.
Wilmington, Delaware 19801
USA