Legal & Compliance

Privacy
Policy

This Privacy Policy explains how Talenbrium collects, uses, discloses, and protects your personal data when you use our workforce intelligence platform, visit our website, or engage with our services. We are committed to transparency about our data practices and to meeting our obligations under applicable privacy law, including GDPR.

Effective date 1 January 2026
Last reviewed June 2026
Controller Talenbrium Inc.
Primary legislation GDPR & US State Laws
01

Who We Are

Talenbrium Inc. ("Talenbrium", "we", "us", or "our") is a workforce intelligence company headquartered in Houghton, Michigan, United States. We operate the Talenbrium platform and website at talenbrium.com, providing HR leaders, talent acquisition professionals, and workforce strategy teams with data-driven intelligence on compensation benchmarks, talent supply and demand, skills architecture, and location strategy.

For the purposes of the EU General Data Protection Regulation (GDPR) and applicable US state privacy laws, Talenbrium Inc. is the data controller responsible for the personal data described in this policy. Where we process data on behalf of our platform clients, we act as a data processor under the terms of our data processing agreements with those clients.

02

Data We Collect

We collect personal data in several ways: directly from you when you register or contact us, automatically when you use our platform or website, and from third-party sources that support our workforce intelligence research. The categories of data we collect, and how we collect them, are set out below.

Data you provide directly

Category Examples
Account & identity data Full name, job title, organisation name, work email address, telephone number
Contact & correspondence data Messages sent via contact forms, briefing requests, support queries, and survey responses
Payment & billing data Billing address, payment method details (processed by our payment provider; we do not store full card numbers)
Professional profile data Company size, industry sector, workforce planning priorities, and stated use cases — provided when onboarding or completing research surveys
Research participation data Survey responses, compensation data submissions, and interview notes collected as part of our primary research programmes (anonymised in outputs)

Data collected automatically

Category Examples
Usage & platform data Features accessed, searches performed, reports viewed, session duration, and click-path data within the platform
Device & technical data IP address, browser type and version, operating system, screen resolution, referring URL
Cookie & analytics data Identifiers placed by analytics and session tools — see Section 9 (Cookies) for full details

Data from third-party sources

Our workforce intelligence research draws on publicly available labour market data, job posting feeds, and professional network data sources. This data is aggregated and anonymised before incorporation into our analytical models and published benchmarks — it is not used to build individual profiles of private persons.

03

How We Use Your Data

We use the personal data we collect for the following purposes:

  • Providing and improving our platform and services — including processing your account, delivering intelligence outputs, responding to briefing requests, and continuously improving the relevance and accuracy of our data models.
  • Client communications and support — sending you account-related notifications, responding to your enquiries, and providing onboarding and ongoing support.
  • Research and product development — analysing aggregated usage patterns to improve our platform features, methodology, and reporting frameworks.
  • Marketing and thought leadership — sending you Talenbrium Perspectives, research reports, and relevant service updates where you have consented or where we have a legitimate interest in doing so. You may unsubscribe at any time.
  • Legal compliance and security — fulfilling our obligations under applicable law, preventing fraud, and protecting the security of our systems and users.
  • Business operations — billing, contract management, audit, and financial reporting.

We do not sell your personal data. We do not sell, rent, or trade your personal information to third parties for their own marketing purposes.

04

Legal Basis for Processing

Where the GDPR applies to our processing of your personal data, we rely on the following legal bases:

Legal basis When we rely on it
Contract performance Processing necessary to provide you with the services you have contracted for, including platform access, briefings, and report delivery
Legitimate interests Analytics to improve our services, security monitoring, fraud prevention, and direct marketing to existing clients and qualified prospects where proportionate and not overridden by your interests
Legal obligation Compliance with applicable law, tax obligations, and regulatory requirements
Consent Marketing communications to non-client contacts; certain cookie placements. You may withdraw consent at any time without affecting the lawfulness of prior processing.
05

Data Sharing & Disclosure

We share your personal data only where necessary and with the following categories of recipient:

  • Service providers and sub-processors — trusted third parties that support our platform operations, including cloud hosting providers, payment processors, analytics tools, and CRM systems. All sub-processors are bound by data processing agreements that restrict their use of your data to delivery of services on our behalf.
  • Professional advisers — lawyers, accountants, and auditors who require access to data to provide professional services to us, subject to obligations of confidentiality.
  • Regulatory and law enforcement authorities — where required to do so by law, court order, or regulatory direction, or where necessary to protect the rights, property, or safety of Talenbrium, our clients, or others.
  • Business transfers — in connection with a merger, acquisition, restructuring, or sale of all or part of our business, your data may be transferred as part of that transaction. We will notify affected users in advance of any such transfer where required by law.

We do not share your personal data with any third party for their independent marketing or commercial purposes.

06

International Data Transfers

Talenbrium is headquartered in the United States. If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, your personal data will be transferred to and processed in the United States and potentially other countries outside your jurisdiction.

We implement appropriate safeguards for such transfers, including the use of Standard Contractual Clauses (SCCs) approved by the European Commission where required, and by ensuring that our sub-processors maintain equivalent protections. Where the UK GDPR applies, we use the International Data Transfer Agreement (IDTA) or addendum to EU SCCs as appropriate.

You may request a copy of the transfer mechanisms in place for your data by contacting us at privacy@talenbrium.com.

07

Data Retention

We retain your personal data for no longer than is necessary for the purposes for which it was collected, taking into account our legal obligations, any applicable limitation periods, and our legitimate business interests. The general retention periods we apply are:

Data category Retention period
Active client account data For the duration of your subscription or contract, plus 36 months following termination
Billing and financial records 7 years from the date of the transaction (legal and tax obligation)
Marketing contact data Until you unsubscribe or withdraw consent, or 3 years of inactivity, whichever is sooner
Website and platform analytics 26 months from collection (in line with standard analytics practice)
Research participation data Anonymised within 90 days of completion; anonymised outputs retained indefinitely
Support and correspondence 3 years from resolution of the query

At the end of the applicable retention period, we securely delete or anonymise your personal data. Where deletion is not immediately possible (for example, because data is stored in backup systems), we isolate your data from further processing until deletion is possible.

08

Your Rights

Depending on your location and the applicable privacy law, you may have the following rights in relation to your personal data. We will respond to all valid requests within 30 days (or within the period required by applicable law). We may need to verify your identity before processing your request.

Right to Access
Request a copy of the personal data we hold about you and information about how we process it.
Right to Rectification
Request that we correct any inaccurate or incomplete personal data we hold about you.
Right to Erasure
Request deletion of your personal data where there is no compelling reason for us to continue processing it.
Right to Restrict Processing
Request that we limit how we use your data in certain circumstances, for example while a dispute about accuracy is resolved.
Right to Data Portability
Receive your data in a structured, commonly used, machine-readable format and transfer it to another controller.
Right to Object
Object to processing based on legitimate interests, including direct marketing. We will stop unless we have compelling grounds to continue.
Right to Withdraw Consent
Where processing is based on your consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
Right Not to Be Profiled
Rights in relation to automated decision-making and profiling that produces significant effects. We do not engage in automated decision-making with legal or similarly significant effects.

To exercise any of these rights, please contact us at privacy@talenbrium.com. If you are located in the EEA or UK and believe we have not addressed your concern adequately, you have the right to lodge a complaint with your local supervisory authority. In the US, additional rights may apply under your state's privacy law (including CCPA/CPRA for California residents).

09

Cookies & Tracking Technologies

We use cookies and similar tracking technologies on our website and platform to provide core functionality, understand how visitors use our services, and improve your experience. The types of cookies we use are described below.

You can manage your cookie preferences at any time by clicking the "Cookie Preferences" link in the footer of our website, or by adjusting your browser settings to block or delete cookies. Please note that disabling certain cookies may affect the functionality of our platform.

10

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, disclosure, alteration, and destruction. These measures include:

  • Encryption of data in transit using TLS and at rest using AES-256
  • Role-based access controls limiting data access to authorised personnel
  • Regular security assessments, penetration testing, and vulnerability management
  • Incident response procedures designed to detect, contain, and notify affected parties of data breaches within the timeframes required by law
  • Staff training on data protection responsibilities and security awareness

While we take data security seriously, no method of transmission over the internet or electronic storage is completely secure. If you believe your data has been compromised, please contact us immediately at privacy@talenbrium.com.

11

Children's Privacy

The Talenbrium platform and website are directed exclusively at business professionals and are not intended for use by individuals under the age of 18. We do not knowingly collect personal data from anyone under 18 years of age. If we become aware that we have inadvertently collected data from a minor, we will take steps to delete that data promptly. If you believe we may have collected data from a minor, please contact us at privacy@talenbrium.com.

12

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our data practices, applicable law, or the structure of our services. When we make material changes, we will notify you by posting the updated policy on this page with a revised effective date, and — where required or appropriate — by sending you a direct notification by email.

We encourage you to review this policy periodically. Your continued use of our platform or website after the effective date of any updated version constitutes your acknowledgement of the revised policy.

13

Contact & Complaints

If you have questions about this Privacy Policy, wish to exercise your data rights, or have a concern about how we handle your personal data, please contact our privacy team:

Talenbrium Inc.
Houghton, Michigan, United States
Email: privacy@talenbrium.com
Phone: +1 (734) 418-0728

If you are located in the European Economic Area or United Kingdom and are not satisfied with our response to your concern, you have the right to lodge a complaint with the data protection supervisory authority in your country of residence or the country where the alleged infringement took place. In Ireland, this is the Data Protection Commission (dataprotection.ie). In the United Kingdom, this is the Information Commissioner's Office (ico.org.uk).

Workforce intelligence built on evidence, not assumption.

Talenbrium's platform gives HR and talent leaders a continuously updated read on compensation benchmarks, talent supply, and skills availability — across 30+ markets.

Briefing
Request a strategic consultation
Platform
Schedule a demonstration
Contact
Speak to our privacy team