Privacy Policy
Last updated: June 2, 2026
The short version: Your interview data is permanently decoupled from your identity at the database level. We cannot link a submission back to you — and neither can anyone else. Your email is used only for login and critical account notices. We do not sell your data. Ever.
1. Who we are and how to contact us
Candidoor Inc. ("Candidoor", "we", "us", "our") is the data controller responsible for your personal information. We are incorporated under the Canada Business Corporations Act and operate from Ontario, Canada.
Privacy enquiries: privacy@candidoor.ca
Legal notices: legal@candidoor.ca
General: hello@candidoor.ca
We will respond to all privacy requests within 30 days. For complex requests we may extend this to 60 days and will notify you of the extension.
2. What personal information we collect
Account information
When you register we collect your email address and a hashed password. If you sign in with Google or Microsoft we receive your email address and name from those providers.
Candidate profile information
Optionally: your role family and years of experience. These are used to improve prep report relevance. They are never published publicly.
Interview submission data (anonymized)
When you log a thread, your submission is assigned a random Feed ID (e.g. CD-4821) that is structurally decoupled from your email at the database level. The submission contains: company name, role type, seniority level, interview stages, outcome, ratings, word selections, and red flags. No free text, no names, no personally identifying information is collected in submissions.
Employer and recruiter information
For employer accounts: your name, company name, job title, and company email. For recruiter accounts: your name, agency name, agency website, and LinkedIn URL (optional).
Technical information
We collect standard server logs including IP address, browser type, and pages visited. This data is used for security monitoring and is retained for 90 days. We do not use this data for advertising or profiling.
Waitlist information
If you join the waitlist we collect your email address and your stated user type (candidate, employer, or recruiter). This is used only to notify you when the platform launches.
3. How we use your information
We do not use your personal information for automated decision-making or profiling that produces legal or similarly significant effects.
4. How anonymization works
candidate.email = "you@email.com" → stored in candidates table
candidate.feed_id = "CD-4821" → stored in candidates table
thread.feed_id = "CD-4821" → stored in threads table
thread.email = NULL → never stored
// The join between these tables is never exposed
// to employers, recruiters, or the public
Your email is stored in the candidates table. Your Feed ID is stored in both the candidates table and the threads table. The link between these tables exists only for your own account management and is never exposed to employers, recruiters, or the public — including through our own admin interface.
In the event of a court order requiring us to identify a candidate from a specific thread, we would be technically unable to comply without cross-referencing internal tables that are not accessible through normal platform operations. We document this architecture as part of our privacy-by-design commitment.
5. Who we share your information with
We do not sell your personal information. We share it only in the following limited circumstances:
6. How long we keep your data
7. Your rights
Depending on where you are located, you may have some or all of the following rights:
To exercise any of these rights, contact privacy@candidoor.ca with your request and sufficient information for us to identify your account. We will respond within 30 days.
8. Cookies and tracking
Candidoor uses the following cookies:
We do not use advertising cookies, tracking pixels, or any third-party analytics that collect personal information. We do not use Google Analytics or any similar service.
9. International data transfers
Your data is stored primarily on Supabase infrastructure located in the Canada Central (Montreal) region. Some data may be processed by our service providers in the United States (Vercel, Resend, Stripe). Where data is transferred outside Canada or the EEA, we ensure appropriate safeguards are in place including Standard Contractual Clauses where required by GDPR.
10. Children's privacy
Candidoor is not directed at children under 18 years of age. We do not knowingly collect personal information from anyone under 18. If you believe we have inadvertently collected information from a minor, contact privacy@candidoor.ca and we will delete it promptly.
11. Security
We implement appropriate technical and organizational measures to protect your personal information including encrypted transmission (TLS), encrypted storage, row-level security on all database tables, rate limiting, and regular security audits. However no system is completely secure and we cannot guarantee absolute security.
In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify you and applicable authorities within the timeframes required by applicable law — 72 hours under GDPR, as soon as feasible under PIPEDA.
12. Changes to this policy
We may update this Privacy Policy from time to time. We will notify you of material changes by email at least 14 days before the changes take effect. The date at the top of this page reflects the most recent update.
13. Supervisory authorities
If you are not satisfied with our response to a privacy request, you have the right to contact your local privacy authority: