Privacy

Privacy Policy

Last updated: June 15, 2026

This policy explains how AdWorks LTD, doing business as ApplyBrief, handles personal information when people visit our site, use ApplyBrief, apply to a job through ApplyBrief, or receive ApplyBrief communications.

1. Who We Are

ApplyBrief is operated by AdWorks LTD, doing business as ApplyBrief, 31 Hayetsira, Ramat Gan, Israel (company / VAT number 515257780). You can contact us at contact@applybrief.com, and our privacy team at privacy@applybrief.com.

For website visitors, account users, billing, and our own business operations, ApplyBrief is generally the controller deciding how personal information is used. For candidate application data submitted to an employer or recruiting customer through ApplyBrief, that customer is generally the controller deciding how the data is used, and ApplyBrief acts as a processor that handles the data for that customer under our Data Processing Addendum.

2. What This Policy Covers

This policy covers personal information about:

Visitors to applybrief.com and related ApplyBrief pages.
Employers, recruiters, agencies, account admins, and team members using ApplyBrief.
Candidates and applicants who apply, submit information, answer screening questions, or communicate through ApplyBrief.
People who contact us by email, SMS, WhatsApp, support forms, or other channels.

3. Personal Information We Collect

Depending on how ApplyBrief is used, we may collect the following categories of personal information:

Contact details, such as name, email address, phone number, company, and role.
Account data, such as login identifiers, team membership, settings, permissions, and usage history.
Candidate and application data, such as application answers, work history, availability, location preferences, salary expectations, screening answers, interview scheduling information, notes, ratings, and status updates. ApplyBrief uses a no-CV application flow and does not require candidates to upload a resume or CV.
Job and employer data, such as job descriptions, compensation ranges, locations, requirements, hiring workflows, and brand assets.
Communications data, such as email, SMS, WhatsApp, delivery status, opt-in and opt-out records, support requests, and message metadata.
Device and log data, such as IP address, browser type, device identifiers, pages viewed, timestamps, referring URLs, marketing attribution, and security logs.
Billing and business records when paid services are used (payment is processed by Paddle as Merchant of Record).
Optional information you choose to provide, including free-text answers, feedback, or support context.

We do not ask candidates to provide sensitive information unless the employer has a lawful reason to request it and provides the required notices or consent. Do not submit government identifiers, health information, financial account numbers, protected-class information, or other sensitive information unless it is specifically requested and lawful for the role or process.

4. Where Information Comes From

We collect personal information directly from you, from customers who configure hiring workflows, from candidates who apply through ApplyBrief, from service providers, and automatically from your device when you use the site or product.

5. How We Use Personal Information

Provide, secure, maintain, and improve ApplyBrief.
Create and host job application pages, application flows, candidate records, and account dashboards.
Send transactional communications, such as verification codes, application confirmations, status updates, interview reminders, security notices, and support messages.
Route candidate applications to the employer, recruiter, or account that owns the relevant job workflow.
Process payments, manage subscriptions and credit balances, and keep billing records.
Prevent abuse, spam, fraud, unauthorized access, and policy violations.
Analyze product usage and performance in aggregated or de-identified form where possible.
Comply with legal obligations, enforce agreements, and respond to valid legal requests.

6. Legal Bases For EU, UK, And German Users

When GDPR or UK GDPR applies, we rely on one or more of these legal bases:

Contract: to provide ApplyBrief to customers and account users.
Legitimate interests: to operate, secure, improve, support, and protect ApplyBrief, and to help customers manage application workflows.
Consent: for optional communications, SMS or WhatsApp opt-ins, certain cookies, or other uses where consent is required.
Legal obligation: to retain records, respond to lawful requests, and meet compliance duties.

You may withdraw consent where processing is based on consent. Withdrawal does not affect processing that happened before withdrawal.

7. AI And Hiring Decisions

ApplyBrief uses AI-assisted tools to draft and improve job pages and related content and to improve the product. ApplyBrief does not rank, score, shortlist, or automatically reject candidates, and we do not use ApplyBrief to make solely automated hiring decisions about candidates. Employers and recruiters using ApplyBrief remain responsible for human review, fair hiring practices, and final hiring decisions.

If ApplyBrief ever introduces features that score or rank candidates, we will provide the notices, candidate transparency, opt-out options, and bias-audit support required by applicable law (for example New York City Local Law 144 and the EU AI Act) before those features are used in hiring.

9. Email, SMS, And WhatsApp Communications

ApplyBrief sends transactional communications connected to account access, applications, interviews, reminders, support, and security by email and, where you have consented, by SMS or WhatsApp. SMS and WhatsApp require consent where applicable. Message frequency varies. Message and data rates may apply. You can reply STOP to SMS messages to opt out and HELP for help. Opting out of SMS may limit our ability to send time-sensitive application or account messages by text, but we may still contact you through other permitted channels.

10. Cookies And Similar Technologies

We use cookies, local storage, and similar technologies to run the site, keep accounts secure, remember settings, measure performance, and understand usage. Where required, we will ask for consent before using non-essential cookies or similar technologies, and we honor the Global Privacy Control (GPC) signal. See our Cookie Policy for the full list and your controls.

11. Retention

We keep personal information only as long as reasonably necessary for the purposes described in this policy, to provide the service, follow customer instructions, maintain security, resolve disputes, enforce agreements, and comply with legal duties. Candidate and application records may be retained according to the relevant employer workflow and applicable employment recordkeeping requirements. SMS consent and opt-out records may be retained as needed to prove consent, maintain suppression lists, and comply with messaging rules.

12. International Transfers

ApplyBrief is hosted in the United States (Google Cloud, us-central1), and AdWorks LTD operates from Israel, which holds a European Commission adequacy decision. We and our service providers may also process personal information in the United Kingdom, the European Economic Area, Canada, and other countries. Where personal information is transferred from the EU, UK, or other regions to the United States or to our service providers, we use appropriate safeguards, such as Standard Contractual Clauses, adequacy mechanisms, or other legally recognized protections.

13. Security

We use administrative, technical, and organizational safeguards designed to protect personal information, including encryption of candidate contact details at rest and access controls. No internet service can guarantee absolute security, but we work to limit access, encrypt sensitive data where appropriate, monitor abuse, and improve our security practices over time.

14. Your Privacy Rights

Depending on where you live, you may have rights to access, correct, delete, export, restrict, or object to certain processing of your personal information. You may also have the right to withdraw consent, opt out of certain sharing or targeted advertising, limit certain sensitive data uses, or complain to a privacy regulator.

Residents of the EU, Germany, and the UK may contact their local data protection authority. Canadian residents may contact the Office of the Privacy Commissioner of Canada or the applicable provincial privacy authority, including Quebec's Commission d'accès à l'information. California and other US state residents have additional privacy rights described below.

To make a request, contact privacy@applybrief.com or contact@applybrief.com. We may need to verify your identity and, for candidate data controlled by an employer customer, we may direct the request to that customer or work with that customer to respond.

15. US State Privacy Rights (California And Others)

If you are a California resident, the California Consumer Privacy Act as amended (CCPA/CPRA) gives you rights to know, access, correct, delete, and obtain a portable copy of your personal information, to opt out of any sale or sharing of personal information, to limit the use of sensitive personal information, and not to be discriminated or retaliated against for exercising these rights. Residents of other US states with privacy laws have similar rights.

We do not sell personal information and do not share it for cross-context behavioral advertising. We honor Global Privacy Control (GPC) signals as a valid opt-out of sale and sharing. You can exercise rights through the contacts above; we offer at least two methods (email to privacy@applybrief.com and our support channel) and authorized agents may submit requests on your behalf with proof of authorization.

The categories of personal information we collect, with examples and retention, are:

Category	Examples	Retention
Identifiers & contact data	Name, email, phone, company, role, account login identifiers.	For the life of the account or application workflow, then per legal recordkeeping needs.
Candidate & application data	Application and screening answers, contact-channel preference, status, notes and ratings added by the employer.	Per the employer customer’s workflow and applicable employment recordkeeping requirements.
Commercial / billing data	Plan, credit balance and ledger, and transaction records (payment is processed by Paddle as Merchant of Record).	As required for accounting, tax, and audit obligations.
Internet & device activity	IP address, device/browser type, pages viewed, timestamps, referring URLs, and marketing attribution (UTM and ad click IDs).	Short-lived for security and analytics; attribution cookies expire within days.
Communications data	Email and (where enabled) SMS/WhatsApp delivery status, opt-in and opt-out records, support requests.	As needed to operate messaging and to prove consent and suppression.

16. Children

ApplyBrief is intended for hiring and is not directed to children. We do not knowingly collect personal information from children under 16, and the application flow is meant for people old enough to lawfully work in the relevant role. If you believe a child provided personal information to ApplyBrief, contact us so we can review and delete it where required.

17. Changes To This Policy

We may update this policy from time to time. When we make material changes, we will update the date above and provide additional notice if required by law. See also our Candidate Privacy Notice and Cookie Policy.