Last updated: 12 May 2026

Privacy Policy

This Privacy Policy explains how Taligent(“we”, “us”) collects, uses, shares and protects personal data when you use our websites, the Taligentplatform and related APIs (the “Service”). It applies to personal data we process as a controller about visitors, account holders and people invited to join an organisation. Where we process personal data on behalf of an organisation customer (for example, candidate data uploaded by a recruiter), the organisation is the controller and we act as their processor under our data processing terms.

1. Who we are

Taligent is operated from the United Kingdom. You can reach our privacy team at privacy@taligent.co.uk.

2. Data we collect

  • Account data: name, work email address, organisation, role, authentication identifiers and login activity.
  • Usage data: requests you make to our agents, prompts and inputs you supply, generated outputs, page views, device and browser metadata, and approximate location derived from IP address.
  • Customer Content: job descriptions, payroll CSVs, candidate records, lead-finder briefs and other content you upload to the Service.
  • Billing data: billing contact, VAT details and payment metadata. Card numbers are handled exclusively by our payment processor and are not stored on our servers.
  • Cookies and similar technologies: session cookies for authentication, and a limited number of first-party analytics cookies described in our cookie notice.

3. How we use personal data

We process personal data to: (a) provide and operate the Service; (b) authenticate users and secure the platform; (c) generate AI outputs you request; (d) process payments and manage subscriptions; (e) communicate transactional and service-related information; (f) comply with our legal obligations; and (g) improve our products, including by analysing aggregated usage patterns.

4. Legal bases

We rely on the following legal bases under the UK GDPR: performance of a contract (to provide the Service), our legitimate interests (to secure, improve and market the Service in a proportionate way), compliance with legal obligations, and your consent where required (for example, for non-essential cookies and marketing emails).

5. Sharing personal data

We share personal data with vetted sub-processors that help us deliver the Service. Current sub-processors include: Supabase (hosted database and authentication), OpenAI (language model inference, with zero data retention configured where available), Stripe (payments), Resend (transactional email), Vercel (application hosting), and Lusha and similar B2B data providers used by the lead-finder agents. We do not sell personal data. We may disclose personal data when required by law or to protect the rights, property or safety of Taligent, our customers or others.

6. International transfers

Some of our sub-processors are located outside the UK and the EEA. Where we transfer personal data internationally, we rely on adequacy decisions or appropriate safeguards such as the UK International Data Transfer Agreement or the EU Standard Contractual Clauses.

7. Retention

We retain personal data for as long as your account is active and for a reasonable period afterwards to comply with legal obligations, resolve disputes and enforce our agreements. Customer Content is retained according to the configuration of your organisation; deletion requests can be raised via your organisation administrator or by contacting our privacy team.

8. Your rights

Subject to applicable law, you have the right to access, rectify, port, restrict processing of and erase your personal data, and to object to processing based on our legitimate interests. You may withdraw consent at any time where consent is the legal basis. To exercise these rights, contact privacy@taligent.co.uk. You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) or your local data protection authority.

9. AI and automated processing

AI-generated outputs (for example, salary bands, job specifications, lead lists and outreach drafts) are produced by large language models and third-party data sources. These outputs may contain inaccuracies. They are intended to support, not replace, human review. Taligent does not make solely automated decisions that produce legal or similarly significant effects about individuals without a human decision maker in the loop.

10. Security

We use industry-standard technical and organisational measures to protect personal data, including encryption in transit, role-based access control, row-level security in our database, regular backups and monitoring. No system is completely secure; please contact us promptly if you suspect a security issue.

11. Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be communicated by email or in-product. Continued use of the Service after the effective date constitutes acceptance of the updated policy.

This document is a template and does not constitute legal advice. Organisations using Taligent should have this policy reviewed by qualified legal counsel and tailored to their controller / processor responsibilities under applicable data protection law.