AriaHR.ai · Legal

Data Rights Statement

This statement summarises the rights available to Candidates and HR Client personnel whose personal data is processed by AriaHR.ai. We align with U.S. state privacy laws (CPRA, Colorado SB24-205, Virginia CDPA, Connecticut, Utah) and international frameworks such as GDPR/UK GDPR.

1. Who Can Exercise Rights

The rights described below apply to Candidates whose Interview Data is processed through the Platform and to HR Client personnel whose contact information we store for account administration.

2. Available Rights

  • Access: Receive confirmation of whether we hold personal data and obtain a copy in a portable format.
  • Correction: Request updates to inaccurate or incomplete data.
  • Deletion: Request deletion of personal data, subject to legal retention requirements (e.g., record-keeping, equal employment reports, litigation holds).
  • Portability: Receive Interview Data in a structured, commonly used format for transmission to another service provider where technically feasible.
  • Opt-Out: Opt out of targeted advertising, profiling, or the “sale”/“sharing” of personal data as defined by U.S. privacy statutes. AriaHR.ai does not sell personal data, but we honour opt-out requests where integrations might constitute “sharing.”
  • Sensitive Data Controls: Provide or withdraw consent where required for processing sensitive categories (e.g., biometric, demographic, precise geolocation).
  • Automated Decision Appeals: Request human review of automated decisions that produce legal or similarly significant effects, such as adverse hiring determinations.
  • Non-Discrimination: Exercise rights without retaliation or discriminatory treatment.

3. Submitting Rights Requests

Individuals or their authorised agents may submit requests by emailing privacy@ariahr.ai or using the “Data Rights” form within the Platform. Please include sufficient information (name, email, interview ID, hiring organisation) so we can verify your identity. We respond within 30 days (45 days where allowed). Appeals for denied requests may be submitted to privacy-appeals@ariahr.ai.

4. Verification of Identity

We verify requests using information already on file or, if necessary, by asking for additional documentation. Authorised agents must present proof of authority (e.g., written authorisation, power of attorney) plus verification of the data subject’s identity.

5. HR Client Responsibilities

HR Clients are the data controllers of Candidate information and must promptly forward rights requests they receive. AriaHR.ai will assist HR Clients in meeting their obligations under GDPR Articles 12-23, CPRA §§1798.100-1798.199.100, Colorado SB24-205, and similar statutes, including providing audit support and compliance documentation.

6. Limitations

We may deny or defer requests where retaining data is required to comply with law, detect fraud or security incidents, defend legal claims, or cooperate with law enforcement. If a request is denied, we will explain the reason and outline available appeal options or regulatory contacts (e.g., the Florida Attorney General, the California Privacy Protection Agency, the EU supervisory authority).

7. Contact

For questions about this statement or to follow up on a request, contact privacy@ariahr.ai or mail Global Voice Connect Solution Ltd., Privacy Office, 249 E. Dania Beach Blvd., Suite 203, Dania Beach, FL 33004, USA.