Who we are
The Career Intelligence Network (CIN) operates the platform at careerbrief.ai. We use proprietary AI technology to generate independent career assessments — Career Intelligence Briefs — for professionals in the financial services and technology sectors.
CIN works with specialist recruitment partners who may introduce candidates to the platform. The data controller for your personal data is FintechHIRE (ABN 37 680 439 648), based in Brisbane, Australia.
What data we collect
| Data | Source | Purpose |
|---|---|---|
| Name, email, phone | You provide at registration, or via a recruitment partner | Account creation, communication |
| CV / résumé | You upload, or submitted through a recruitment partner | AI analysis to generate your Career Intelligence Brief |
| Career history, skills, qualifications | Extracted from your CV by AI | Career Intelligence Brief generation |
| Location (city/country) | Extracted from your CV | Market context and relevance |
| Session data | Automatically when you use the platform | Authentication, security |
We do not collect sensitive personal data such as racial or ethnic origin, political opinions, religious beliefs, health data, or sexual orientation. If such information appears in a CV, our AI is instructed to disregard it.
How we use AI
This is important. We use AI to analyse your career data and generate your Brief. We want you to understand what this means for you.
When you upload your CV — or when one of our recruitment partners submits a CV you previously provided to them — our AI system analyses it to generate your Career Intelligence Brief. This is the core service CIN provides.
The analysis is automated. AI reads your CV, identifies career patterns, and produces an independent written assessment. No employment, credit, or legal decisions are made solely on the basis of your Brief.
You have full control:
- You can review your Brief before anyone else sees it.
- You can flag any statement you believe is inaccurate.
- You can request deletion of your Brief and all underlying data at any time.
- You can object to automated processing entirely.
AI processing providers
Your CV text is processed using third-party AI services. These providers process data on our behalf under strict data processing agreements and do not retain your data for their own purposes. Processing may occur outside your country of residence (see International transfers below).
How we share your data
With employers and hiring companies
CIN works with recruitment partners who may share your Brief with prospective employers for specific roles. Your Brief is only made visible to an employer when:
- You have been shortlisted for a specific role and notified, or
- You have explicitly opted in to recruiter visibility in your account settings.
Employers see your Brief and assessment through a secure, time-limited portal managed by the recruitment partner. Where applicable, your submitted CV may also be made available through this portal. Employers do not receive your email address or phone number directly — all introductions and communications are managed through the recruitment partner.
With service providers
We use a limited number of third-party service providers to operate the platform:
| Category | Purpose | Data shared |
|---|---|---|
| AI processing | Career assessment generation | CV text (not contact details) |
| Email delivery | Transactional emails | Email address, name |
| Hosting infrastructure | Platform operation | All platform data (encrypted at rest) |
| Payment processing | Premium subscriptions | Payment details (handled directly by provider) |
We do not sell your data. We do not share it with advertisers. We do not use it for purposes unrelated to career intelligence and recruitment.
Legal basis for processing
We process your data under the following bases (under UK GDPR, EU GDPR, the Australian Privacy Act, and the South African Protection of Personal Information Act (POPIA)):
- Consent: When you register and upload your CV, you consent to AI processing to generate your Brief.
- Legitimate interest: When a recruitment partner submits your CV as part of an active recruitment engagement, we have a legitimate interest in assessing candidates for roles. You are always notified and can opt out.
- Contract: When you subscribe to a paid plan, processing is necessary to deliver the service.
Data security
All personal data is encrypted at rest using industry-standard encryption. CVs are stored on encrypted file systems. All connections use TLS encryption. Administrative access requires multi-factor authentication. We conduct regular security reviews of our platform.
Data retention
- Active accounts: Data is retained while your account exists.
- Inactive accounts: If you do not log in for 24 months, we will notify you before archiving or deleting your data.
- Deletion requests: Processed within 30 days. We delete your CV, Brief, all AI-generated content, and personal data. Anonymised, aggregated statistics (which cannot identify any individual) may be retained.
- Recruitment records: Where required for legal or regulatory compliance, minimal records may be retained for up to 3 years after the relevant recruitment process.
Your rights
Regardless of where you are located, you have the right to:
- Access — Request a copy of all data we hold about you.
- Rectification — Correct inaccurate data, or flag Brief statements you believe are wrong.
- Deletion — Request we delete all your data ("right to be forgotten").
- Portability — Receive your data in a structured, machine-readable format.
- Object — Object to processing, including automated profiling.
- Restrict — Request we stop processing while a dispute is resolved.
- Withdraw consent — At any time, without affecting the lawfulness of prior processing.
- Human review — Request that a human reviews any automated assessment.
To exercise any right, use our contact form. We respond within 30 days.
Cookies
We use only essential cookies required for the platform to function:
- Session cookie — Keeps you logged in. Expires when you close your browser or after 1 hour of inactivity.
- Security token — Prevents cross-site request forgery. Session-only.
We do not use tracking cookies, analytics cookies, or advertising cookies. We do not use third-party tracking scripts.
International transfers
Your data is stored on servers in the United Kingdom. Some processing (including AI analysis) may involve data transfer to servers in the United States or other jurisdictions. These transfers are governed by appropriate safeguards including standard contractual clauses and data processing agreements with all providers. For South African users, cross-border transfers comply with Section 72 of POPIA.
Children
Our service is designed for working professionals. We do not knowingly collect data from anyone under 18. If we discover we have, we will delete it immediately.
Changes to this policy
We may update this policy as our platform evolves. Material changes will be notified via email to registered users. The "last updated" date at the top reflects the most recent revision.
Contact and complaints
For privacy enquiries, data requests, or complaints, please use our contact form.
If you are unsatisfied with our response, you may lodge a complaint with the relevant supervisory authority:
- UK: Information Commissioner's Office — ico.org.uk
- Australia: Office of the Australian Information Commissioner — oaic.gov.au
- EU: Your local data protection authority
- South Africa: Information Regulator — inforegulator.org.za