Privacy Policy
1. Introduction
Graixl respects the privacy of individuals and organizations who use our services. This Privacy Policy and GDPR Compliance Statement outlines how we collect, process, and protect personal data. Graixl provides Aintervue, a SaaS-based AI-powered interview automation platform used by companies and agencies worldwide.
2. Scope
This policy applies to all users of our website (www.graixl.com) and our SaaS platform (Aintervue), including clients across the European Union, United Kingdom, and globally.
3. Roles and Responsibilities
For data uploaded to Aintervue, our clients (employers, recruiters, agencies) act as Data Controllers. Graixl acts as a Data Processor, processing candidate data strictly under their instructions.
4. Data We Process
We do not collect personal data directly from candidates. All candidate data (such as resumes) is uploaded by our clients via the platform. We do not collect sensitive data from website visitors. If you contact us via the website, we may collect your name, email address, and company name.
5. Purpose of Data Processing
We process candidate resumes for the purpose of conducting automated interviews using Voice AI. We use contact data provided through the website for business communication and client onboarding.
6. Data Storage and Security
All data is stored securely on AWS (Amazon Web Services) servers. We implement industry- standard encryption and access control measures to ensure data integrity and confidentiality. Access is limited to authorized personnel only.
7. International Data Transfers
Graixl does not transfer personal data outside the European Economic Area (EEA). If such transfers occur in the future, they will comply with applicable data protection laws and rely on standard contractual clauses or equivalent safeguards.
8. Data Subject Rights
Under GDPR and applicable international privacy laws, individuals have the right to access, rectify, delete, or restrict the processing of their data. As Graixl does not directly collect data from individuals, such requests should be addressed to the client (data controller) who uploaded the data.
9. Cookies and Tracking
Our website is content-based and does not use cookies, tracking scripts, or analytics tools. We do not use marketing pixels or behavioral tracking.
10. Children’s Privacy
Our services and website are not intended for children under the age of 16. We do not knowingly collect data from minors.
11. Legal Basis for Processing
We process data based on contractual necessity, legitimate interest, and in some cases, explicit consent provided through client agreements.
12. Data Retention
Data is retained only for as long as necessary to fulfill the intended purpose or as required by law. Clients may request deletion of candidate data through the platform.
13. Security Measures
Graixl applies technical and organizational measures to protect data, including secure cloud infrastructure, encrypted communication, limited data access, and internal privacy controls.
14. Contact Information
For questions about this policy or to exercise data rights, contact us at:
Email: admin@graixl.com
Address: Tallin, Estonia