Sigmentix Legal
Privacy Policy
Last updated: March 2026
1. Who we are and what this policy is for
Sigmentix is an AI-powered talent intelligence platform. We connect senior professionals with organisations that want to hire them. We are a platform, not a recruiter, and professionals stay in control of their own data and decide if and when they engage with any organisation through us.
This policy explains what personal data we collect, why we collect it, what we do with it, and what your rights are under GDPR (EU) 2016/679 and the Irish Data Protection Act 2018.
| Trading name | Sigmentix |
|---|---|
| Based in | Ireland |
| Privacy contact | Contact page |
| Website | sigmentix.com |
Sigmentix is currently in the process of formal incorporation in Ireland. Registered company details will be added here once complete.
2. Key terms used in this policy
- Platform: the Sigmentix website and AI talent intelligence tools at sigmentix.com.
- Professionals: individuals with senior/specialist experience processed through the Platform.
- Firms: organisations using the Platform to find and connect with Professionals.
- Investors: individuals or organisations contacting us about investing in Sigmentix.
- Market Intelligence: fully anonymised and aggregated compensation, trend, tenure, and availability insights.
- Data Controller: decides how and why personal data is used.
- Data Processor: processes personal data on another party's instructions.
3. Our role and when it changes
When we are the data controller
- Building and maintaining Professional profiles from publicly available sources.
- Processing information Firms input when using the Platform.
- Handling website visitor, analytics, contact form, and investor enquiry data.
When firms become independent data controllers
If a Professional chooses to share information with a specific Firm (for example by expressing interest), that Firm becomes an independent data controller for that shared data.
Sigmentix does not share Professional data with Firms without the Professional's active choice. Concerns about a Firm's post-sharing data handling must be raised with that Firm directly.
4. What data we collect
4.1 Professionals
We collect professional data directly from you and/or from public sources.
- Name, title, current/former employers.
- Work history, expertise, qualifications, credentials, memberships.
- Professional contact details (for example professional email, LinkedIn).
- Salary expectations (for confidential pre-matching only).
- Platform interactions, responses, and profile inputs.
4.2 Firms
- Contact details (name, title, company, professional email).
- Company context (type, sector, regulatory context, size).
- Search requirements and role parameters.
- Communications, billing, and invoicing details.
4.3 Website visitors
- IP/device/browser/OS information.
- Usage metrics, referral source, click activity.
- Cookie data (see Section 13).
- Contact form submissions.
4.4 Investors
- Name, firm/organisation, and professional email address.
5. Why we collect data and legal basis
We rely on a combination of legal bases depending on purpose: contract, legal obligation, legitimate interests, and consent (where required).
| Purpose | Legal basis |
|---|---|
| Running the Platform and Firm access | Contract |
| Profile intelligence, AI matching, and talent mapping | Legitimate interests |
| Product updates and non-essential communications | Legitimate interests / Consent |
| Marketing to prospects | Consent |
| Investor follow-up and support responses | Legitimate interests |
| Legal/accounting/regulatory compliance | Legal obligation |
| Non-essential cookies | Consent |
Where we rely on legitimate interests, we assess fairness and balance against your rights. You can object (see Section 11).
6. Everything we use your data for
For Professionals
- Matching, talent intelligence, and role relevance notifications.
- Confidential pre-matching of compensation expectations vs search budgets.
- Anonymised, aggregated market intelligence outputs (non-identifiable).
- Product updates, feedback requests, and optional event/content invitations.
For Firms
- Account/search setup and AI search processing.
- Search communications, billing, and platform updates.
- Anonymised market intelligence and trend reporting.
For website visitors and investors
- Operate/improve website, analytics, security monitoring, and enquiry handling.
- Investor follow-up and company update sharing on request.
7. Professional data from public sources
We may process publicly available professional information (for example public profiles, company bios, regulatory/professional registers, and industry publications) to build Platform intelligence.
- We collect only professionally relevant data.
- We do not collect unrelated sensitive personal data.
- If contacted, we explain what we hold and where it came from.
- You can exercise full rights, including deletion requests.
8. Market intelligence (always anonymised and aggregated)
Market intelligence outputs are generated from data that is anonymised and aggregated before analysis. No output is traceable back to an individual.
- No individual-level reporting.
- No identifiable output shared internally, with Firms, or publicly.
- Minimum thresholds applied to prevent inference from small groups.
Questions: use our Contact page.
9. AI and automated processing
AI is central to the Platform. It helps match Professionals to search criteria, generate market intelligence, and support outreach/search refinement.
Matching quality depends on information quality supplied/confirmed by users. Sigmentix facilitates connections and does not make hiring decisions for Firms.
Under Article 22 GDPR, you can request human review of an automated assessment that significantly affects you via our Contact page.
9A. Diversity, fairness, and non-discrimination
Platform matching is designed around relevant experience and skills only. The matching system does not process protected characteristics for matching decisions.
- Age, gender, gender identity
- Ethnicity, nationality, race
- Religion or belief
- Disability or health status
- Sexual orientation
- Family status or caring responsibilities
Concerns can be raised via our Contact page.
10. Who we share data with and limits of responsibility
| Recipient | Why | Our role |
|---|---|---|
| Firms (via Platform) | Only when a Professional actively shares | Facilitator / Processor |
| AI and technology providers | Platform operations and matching | Processor under DPA |
| Hosting/database providers | Secure service delivery and storage | Processor relationship |
| Legal/compliance advisors or regulators | Where required | Legal obligation / Legitimate interests |
We do not sell data or share it with advertisers. Market intelligence sharing is anonymised/aggregated.
Once a Professional shares data with a Firm, that Firm is independently responsible as controller for its handling of that data.
11. Your rights and how to use them
- Access your data.
- Correct inaccurate or incomplete data.
- Delete data (subject to legal obligations).
- Restrict processing.
- Data portability.
- Object to legitimate-interest processing (including profiling).
- Request human review of automated assessments.
- Withdraw consent.
- Opt out of marketing, surveys, and non-essential communications.
To exercise rights, use our Contact page. We aim to respond within one month (up to three months in complex cases).
12. How long we keep data
| Data type | Retention |
|---|---|
| Active Firm account data | Relationship duration + 6 years |
| Professional profiles (active engagement) | Up to 3 years from last interaction |
| Professional profiles (no engagement) | 12 months, then deleted/refreshed with permission |
| Website contact enquiries | 12 months |
| Investor enquiries | Up to 24 months, or until resolved |
| Billing and invoicing records | 7 years (Irish legal requirement) |
| Marketing consent records | As long as consent is active + compliance period |
Anonymised and aggregated market intelligence (non-personal data) is not subject to personal data retention limits.
13. Cookies
| Type | What it does | Consent required? |
|---|---|---|
| Strictly necessary | Sessions and security | No |
| Analytics / performance | Usage insights | Yes |
| Functional | Preference memory | Yes |
| Marketing / targeting | Campaign performance | Yes |
We place non-essential cookies only after consent, in line with Irish ePrivacy Regulations (SI 336/2011). See our Cookie Policy.
14. Security
- Data in transit encrypted (HTTPS/TLS).
- Data at rest encrypted.
- Controlled/authenticated access to Platform data.
- Use of providers with appropriate security standards.
- Data minimisation practices.
If a breach likely risks rights/interests, we notify the Data Protection Commission within 72 hours and affected individuals where required.
15. International data transfers
Some providers may process data outside the EEA (including the United States). Where that happens, we apply appropriate safeguards, including Standard Contractual Clauses (SCCs) and adequacy mechanisms where applicable.
Safeguard details are available on request via our Contact page.
16. Under-18s
The Platform is designed for professionals and organisations. We do not knowingly process data about anyone under 18. If you believe we have, contact us via our Contact page and we will remove it.
17. Your right to complain
Please contact us first via our Contact page so we can try to resolve concerns.
If unresolved, you may complain to:
Data Protection Commission
21 Fitzwilliam Square South, Dublin 2, D02 RD28
Website: www.dataprotection.ie
Email: info@dataprotection.ie
Phone: +353 57 868 4800
18. Changes to this policy
We update this policy when our practices or legal obligations change. The "Last updated" date reflects the latest revision. For significant changes, we notify users via the website or directly where possible.
19. Get in touch
Sigmentix - Data and Privacy
Contact: Contact page
Website: sigmentix.com