Privacy Policy

Ultra Luxury Jobs is the data controller for personal data submitted through our marketplace. For B2B customers operating an employer workspace, we act as a data processor for candidate data they ingest from third parties; the controller relationship is governed by our Data Processing Addendum at /legal/dpa.

• Account data. Name, email, phone, password hash, role (candidate/employer/admin), preferences.
• Profile data. Candidate profile, résumé, work history, certifications, references, photographs you upload.
• Verification data. Government ID, right-to-work documents, background-check inputs and outputs. Stored in encrypted, access-restricted storage. Retained only as long as needed (see §7).
• Employer data. Company name, billing address, business identifiers, persons authorized to act for the employer.
• Payment data. Processed by our PCI-DSS Level 1 payment provider (Stripe, Inc.). We never see or store raw card numbers — only the last four digits, brand, and a customer token.
• Marketplace activity. Job posts, applications, messages, saved searches, shortlists, contact unlocks, ratings.
• Device & log data. IP address, user agent, timestamps, security events, API errors. Retained for 90 days for security and abuse prevention.
• Cookies. See our Cookie Policy.

We do not sell or "share" personal information as defined under CCPA/CPRA. We do not use personal data for automated decision-making with legal effect.

• Employers and candidates who match on the marketplace — only data each side has chosen to make visible to the other.
• Service providers bound by written processor agreements: Stripe (payments), Resend (transactional email), Supabase (hosted database), Cloudflare (edge & DDoS), Sentry (error monitoring), our identity-verification vendor, and our background-check vendor.
• Legal & safety. Law-enforcement or regulators where legally required, and to protect rights, property, or safety.
• Corporate transactions. A successor in a merger, acquisition, or asset sale, bound by this Policy.

Our primary data residency is the EU. Where data is transferred outside the EEA/UK, we rely on the European Commission's Standard Contractual Clauses (and the UK Addendum) plus supplementary technical and contractual safeguards.

We use TLS 1.3 in transit, AES-256 at rest, hardware-isolated keys, row-level security on the database, least-privilege access, time-bound credentials for administrators, MFA enforcement on privileged roles, and 24/7 logging with alerting. Verification documents are stored separately and access-audited. We test against the OWASP ASVS controls and engage independent penetration testing annually.

• Candidate profile: while your account is active + 30 days after deletion, then anonymized.
• Verification documents: 24 months after the verification decision, then deleted.
• Messages & application records: 5 years for legal/audit reasons.
• Payment records & tax invoices: 7 years (legal obligation).
• Security logs: 90 days; abuse-related logs up to 12 months.

Subject to applicable law, you have the right to access, rectify, erase, restrict, port, and object to processing of your personal data, and to withdraw consent at any time. Californian residents have rights to know, delete, correct, opt out of "sharing", and non-discrimination. Members can exercise these rights self-serve in the Privacy section of the dashboard (/dashboard/privacy) or by writing to privacy@ultraluxuryjobs.com. We respond within 30 days. You may also lodge a complaint with your supervisory authority.

The marketplace is for adults aged 18 or older. We do not knowingly collect data from children.

We will post material changes here and notify members by email at least 14 days before they take effect. Last updated June 14, 2026.

Privacy queries: privacy@ultraluxuryjobs.com. EU representative and DPO contact details available on request.