Privacy Policy

Recursio Labs Pty Ltd (ABN pending) ("Recursio Labs", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website at recursiolabs.com, use our products (including ResumeAI and Arctic Bank), or interact with us in any capacity.

We comply with the Australian Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and where applicable, the EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

By accessing or using our services, you acknowledge that you have read and understood this Privacy Policy.

We may collect the following categories of personal information:

Information you provide directly:

• Name, email address, and contact details when you submit forms or contact us
• Professional information (job title, company name) when making partnership or investor enquiries
• Resume content and career data when using ResumeAI
• Financial information processed by Arctic Bank in accordance with its separate privacy policy
• Any other information you voluntarily provide through correspondence

Information collected automatically:

• Device information (browser type, operating system, device identifiers)
• IP address and approximate geographic location
• Usage data (pages visited, features used, session duration, click patterns)
• Referral source and search terms used to find our services
• Performance and diagnostic data

We use your personal information for the following purposes:

• To provide, maintain, and improve our products and services
• To process and respond to enquiries, partnership proposals, and investor communications
• To personalise your experience and deliver relevant content
• To send transactional communications (account confirmations, updates, security alerts)
• To send marketing communications where you have opted in (you may unsubscribe at any time)
• To detect, prevent, and address security issues, fraud, and technical problems
• To comply with legal obligations and enforce our terms of service
• To conduct research and analytics to improve our AI models and products

We do not sell your personal information. We may share information with:

• Service providers who assist in operating our platform (hosting, analytics, email delivery) under strict contractual obligations
• Professional advisors (lawyers, accountants, auditors) as necessary for business operations
• Law enforcement or regulatory authorities when required by law or to protect our rights
• Potential acquirers in the event of a merger, acquisition, or sale of assets (you would be notified)

Our sub-brands (including Arctic Bank) maintain separate data handling practices. When you use an individual product, that product's specific privacy disclosures apply in addition to this policy.

Your data is stored on secure servers located in Australia and may be processed in other jurisdictions where our service providers operate. Where data is transferred internationally, we ensure appropriate safeguards are in place, including standard contractual clauses and adequacy decisions.

We implement industry-standard security measures including 256-bit TLS encryption in transit, AES-256 encryption at rest, access controls, regular security audits, and intrusion detection systems. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

We retain personal information only as long as necessary for the purposes outlined in this policy, or as required by law. When data is no longer needed, it is securely deleted or anonymised.

Depending on your jurisdiction, you may have the following rights:

• Access: Request a copy of the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information (subject to legal retention obligations)
• Portability: Request a machine-readable copy of your data
• Objection: Object to processing of your data for certain purposes
• Restriction: Request we limit how we use your data
• Withdraw consent: Where processing is based on consent, you may withdraw it at any time

To exercise any of these rights, contact us at privacy@recursiolabs.com. We will respond within 30 days.

We use cookies and similar tracking technologies to enhance your experience. For detailed information about the cookies we use and how to manage your preferences, please see our Cookie Policy.

Our services may integrate with or link to third-party services, including:

• Vercel (hosting and analytics)
• AI model providers for ResumeAI functionality
• Payment processors for Arctic Bank
• Communication tools for customer support

These third parties have their own privacy policies, and we encourage you to review them. We are not responsible for the privacy practices of third-party services.

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child under 16, we will take steps to delete it promptly. If you believe a child has provided us with personal information, please contact us at privacy@recursiolabs.com.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. We will post the updated policy on this page with a revised "Last updated" date. Material changes will be communicated via email or a prominent notice on our website.

If you have questions or concerns about this Privacy Policy or our data practices, contact us at: