← Back to Home
Privacy Policy

Last updated: February 27, 2026

1. Introduction

FirstImpression ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our video-first job matching platform.

We operate in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws. By using FirstImpression, you consent to the data practices described in this policy.

2. Data Controller

For the purposes of GDPR, the data controller is:

FirstImpression
Email: privacy@firstimpression.you

3. Information We Collect

3.1 Personal Information You Provide

  • Account Information: Name, email address, password
  • Profile Information: Professional headline, location, years of experience, skills, values, work preferences
  • Video Content: Video recordings (profile videos, application videos, challenge responses)
  • Resume/CV: If uploaded, your resume and its contents
  • Company Information: For companies: company name, logo, description, values, job postings
  • Communications: Messages sent through our platform, support inquiries

3.2 Automatically Collected Information

  • Usage Data: Pages visited, features used, time spent on platform
  • Device Information: IP address, browser type, operating system
  • Cookies: See our Cookie Policy below

3.3 AI-Generated Data

  • Video Transcripts: Text transcriptions of your video content
  • AI Analysis: Skills detected, communication scores, answer quality assessments
  • Match Scores: Compatibility scores between candidates and jobs

4. How We Use Your Information

4.1 Primary Purposes

  • Job Matching: Connect candidates with suitable job opportunities
  • AI Analysis: Analyze video content to extract skills, assess communication, and calculate match scores
  • Platform Operation: Provide, maintain, and improve our services
  • Communication: Send notifications about applications, job matches, and platform updates

4.2 Legal Basis (GDPR)

  • Contract Performance: Processing necessary to provide our services
  • Consent: Video recording, AI analysis, marketing communications
  • Legitimate Interests: Platform improvement, fraud prevention, security
  • Legal Obligations: Compliance with applicable laws

5. Data Sharing and Disclosure

5.1 With Companies (Job Applications)

When you apply to a job, we share the following with the hiring company:

  • Your profile information (name, headline, skills, experience)
  • Your application videos and challenge responses
  • Video transcripts and AI-generated insights
  • Match score breakdown
  • Your resume (if uploaded)

5.2 Service Providers

We share data with trusted third-party service providers:

  • Supabase: Database and authentication services
  • Cloudflare R2: Video storage
  • OpenAI: Video transcription and AI analysis
  • Resend: Email delivery

5.3 We Never Sell Your Data

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

6. Your Rights (GDPR)

Under GDPR, you have the following rights:

  • Right to Access: Request a copy of your personal data
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure ("Right to be Forgotten"): Request deletion of your data
  • Right to Data Portability: Receive your data in a machine-readable format
  • Right to Object: Object to certain types of processing
  • Right to Restrict Processing: Limit how we use your data
  • Right to Withdraw Consent: Withdraw consent for processing at any time

To exercise these rights, contact us at privacy@firstimpression.you or use the settings in your account dashboard.

7. Data Retention

We retain your data for the following periods:

  • Active Accounts: While your account is active
  • Inactive Accounts: 6 months after last login, then deleted
  • Videos: 2 years from upload, or until deletion requested
  • Applications: 2 years from application date, or until deleted
  • Backups: Up to 90 days in encrypted backups

You can request immediate deletion of your data at any time through your account settings.

8. Data Security

We implement industry-standard security measures:

  • End-to-end encryption for data in transit (HTTPS/TLS)
  • Encryption at rest for stored data
  • Regular security audits and updates
  • Role-based access controls
  • Secure authentication (OAuth, password hashing)
  • Automated backups with encryption

9. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure adequate protection through:

  • Standard Contractual Clauses (SCCs) with service providers
  • Processing by providers with adequate data protection certifications
  • Your explicit consent where required

10. Cookies and Tracking

We use cookies for:

  • Necessary: Authentication, security, basic functionality
  • Analytics: Understanding how you use our platform (with consent)
  • Preferences: Remembering your settings

You can manage cookie preferences through the cookie banner or your browser settings.

11. Children's Privacy

FirstImpression is not intended for users under 16 years of age. We do not knowingly collect personal information from children. If you believe we have collected data from a child, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or through a notice on our platform. Continued use after changes constitutes acceptance.

13. Contact Us

For privacy-related questions or to exercise your rights:

Email: privacy@firstimpression.you
Data Protection Officer: dpo@firstimpression.you

You also have the right to lodge a complaint with your local data protection authority.

By using FirstImpression, you acknowledge that you have read and understood this Privacy Policy.