Privacy Policy & GDPR

Effective Date: August 12, 2025

Introduction

Welcome to Talio ("we", "our", "us"). We are committed to protecting your personal data and handling it with due care. This Privacy Policy explains what data we collect, how we use it, and how we protect your rights, in accordance with the General Data Protection Regulation ("GDPR").

We apply appropriate technical and organizational measures and conduct regular system testing to maintain the confidentiality, integrity, and availability of personal data.

When and why we process personal data

Talio may process personal data when:

  • The processing is necessary for the performance of a contract or to take pre-contractual steps at the user's request.
  • The processing is necessary to comply with a legal obligation.
  • The processing is necessary for the purposes of a legitimate interest. In such cases, we always make a careful balance between our interest and the protection of your privacy.
  • The user has given consent. By using our systems, the customer confirms that all affected parties have been informed and have given their consent to the registration of their relevant data. Consent may be withdrawn at any time, without affecting the lawfulness of the processing prior to withdrawal.
  • You link your LinkedIn account to access professional networking features and enhanced job matching.
  • You upload your resume or CV files to improve job recommendations and profile completeness.

Data we collect

When you create an account, we collect personal information such as your name and email address. Solely to provide our services.

When you interact with Talio through voice or chat interviews, we collect and process conversation data including your job preferences, career goals, professional experience, and job search criteria. For chat conversations, we store the full transcript. For voice conversations, we do not store recordings or transcripts - only the structured information extracted during the conversation. This information is used to provide personalized job recommendations and improve our AI-powered matching services.

When you link your LinkedIn account, we collect and process professional profile information including your work experience, education, skills, and career preferences to provide enhanced job matching and networking features.

When you upload resume or CV files, we extract and process professional information including work history, education, skills, and qualifications to improve your profile completeness and job recommendations.

We also collect anonymized usage data (such as browser type, operating system, and visited pages) to improve our services.

Google User Data

When you sign in with Google, we access only the following information from your Google account:

  • Email address: Used to create and identify your Talio account
  • Name: Used to personalize your experience and display your profile

Important: We do not access your Gmail, Google Drive, Calendar, or any other Google services. We only use the basic profile information (email and name) for account creation and authentication purposes.

Data retention

We store personal data for as long as you maintain an account with Talio. Once your account is deleted, your personal data will be removed following the terms of use. Anonymous analytics data is kept indefinitely for internal improvement purposes.

Data sharing and subprocessors

Talio may share personal data with carefully selected processors who provide services on our behalf, including:

Service providers

  • Mailgun (email delivery)
  • OpenAI (AI processing and conversation analysis to extract career information from interviews)
  • PostHog (analytics, without personal or sensitive data)
  • Sentry (error and performance monitoring)

Infrastructure providers

  • Hetzner.com (backend hosting and database)
  • Cloudflare (frontend hosting and content delivery)

Talio and these external processors are bound by the GDPR and process personal data only under our instructions. If data is processed outside the EEA, we ensure an equivalent level of protection as required by GDPR.

Google API Services User Data Policy Compliance

Our use and transfer of information received from Google APIs adheres to Google API Services User Data Policy, including the Limited Use requirements.

  • We only request the minimum permissions necessary (email and basic profile)
  • We use Google user data solely for providing our core service functionality
  • We do not sell or share Google user data with third parties
  • We do not use Google user data for advertising or marketing purposes
  • We store Google user data securely and delete it when no longer needed

Third-party integrations

Our platform integrates with third-party services with your explicit consent:

  • Google: For account creation and authentication using Google Sign-In. We access only your email address and name.
  • LinkedIn: For account creation and authentication using LinkedIn Sign-In. We access only your basic profile information.

These integrations are optional and you can always use email/password authentication instead.

Your rights

As a user, you have the right to:

  • Access your personal data and obtain additional information regarding the processing.
  • Rectify inaccurate or incomplete data.
  • Erase your personal data.
  • Restrict processing in certain cases.
  • Port your personal data to another controller, where technically possible.

You can exercise these rights by sending a request to support@usetalio.com, accompanied by a copy of the front side of your ID card.

If you believe your data is being processed unlawfully, you can contact the Data Protection Authority (Rue de la Presse 35, 1000 Brussels, commission@privacycommission.be, +32 2 274 48 00).

Cookies and local storage

We use cookies and local storage to remember preferences such as language settings, themes and access tokens. You can manage these via your browser settings.

Children's privacy

Our services are intended for users aged 18 and over. We do not knowingly collect data from children under 18.

Data controller

The controller of your personal data is Talio, registered in Lange Gasthuisstraat 29/31, 2000 Antwerpen, Belgium. This means Talio determines the purposes and means of the processing and is your point of contact for privacy matters (support@usetalio.com).

Changes to this policy

We reserve the right to amend this policy. For significant changes, we will notify you via email and on our website.