Who We Are
Talenbrium Inc. ("Talenbrium", "we", "us", or "our") is a workforce intelligence company headquartered in Houghton, Michigan, United States. We operate the Talenbrium platform and website at talenbrium.com, providing HR leaders, talent acquisition professionals, and workforce strategy teams with data-driven intelligence on compensation benchmarks, talent supply and demand, skills architecture, and location strategy.
For the purposes of the EU General Data Protection Regulation (GDPR) and applicable US state privacy laws, Talenbrium Inc. is the data controller responsible for the personal data described in this policy. Where we process data on behalf of our platform clients, we act as a data processor under the terms of our data processing agreements with those clients.
Data We Collect
We collect personal data in several ways: directly from you when you register or contact us, automatically when you use our platform or website, and from third-party sources that support our workforce intelligence research. The categories of data we collect, and how we collect them, are set out below.
Data you provide directly
| Category | Examples |
|---|---|
| Account & identity data | Full name, job title, organisation name, work email address, telephone number |
| Contact & correspondence data | Messages sent via contact forms, briefing requests, support queries, and survey responses |
| Payment & billing data | Billing address, payment method details (processed by our payment provider; we do not store full card numbers) |
| Professional profile data | Company size, industry sector, workforce planning priorities, and stated use cases — provided when onboarding or completing research surveys |
| Research participation data | Survey responses, compensation data submissions, and interview notes collected as part of our primary research programmes (anonymised in outputs) |
Data collected automatically
| Category | Examples |
|---|---|
| Usage & platform data | Features accessed, searches performed, reports viewed, session duration, and click-path data within the platform |
| Device & technical data | IP address, browser type and version, operating system, screen resolution, referring URL |
| Cookie & analytics data | Identifiers placed by analytics and session tools — see Section 9 (Cookies) for full details |
Data from third-party sources
Our workforce intelligence research draws on publicly available labour market data, job posting feeds, and professional network data sources. This data is aggregated and anonymised before incorporation into our analytical models and published benchmarks — it is not used to build individual profiles of private persons.
How We Use Your Data
We use the personal data we collect for the following purposes:
- Providing and improving our platform and services — including processing your account, delivering intelligence outputs, responding to briefing requests, and continuously improving the relevance and accuracy of our data models.
- Client communications and support — sending you account-related notifications, responding to your enquiries, and providing onboarding and ongoing support.
- Research and product development — analysing aggregated usage patterns to improve our platform features, methodology, and reporting frameworks.
- Marketing and thought leadership — sending you Talenbrium Perspectives, research reports, and relevant service updates where you have consented or where we have a legitimate interest in doing so. You may unsubscribe at any time.
- Legal compliance and security — fulfilling our obligations under applicable law, preventing fraud, and protecting the security of our systems and users.
- Business operations — billing, contract management, audit, and financial reporting.
We do not sell your personal data. We do not sell, rent, or trade your personal information to third parties for their own marketing purposes.
Legal Basis for Processing
Where the GDPR applies to our processing of your personal data, we rely on the following legal bases:
| Legal basis | When we rely on it |
|---|---|
| Contract performance | Processing necessary to provide you with the services you have contracted for, including platform access, briefings, and report delivery |
| Legitimate interests | Analytics to improve our services, security monitoring, fraud prevention, and direct marketing to existing clients and qualified prospects where proportionate and not overridden by your interests |
| Legal obligation | Compliance with applicable law, tax obligations, and regulatory requirements |
| Consent | Marketing communications to non-client contacts; certain cookie placements. You may withdraw consent at any time without affecting the lawfulness of prior processing. |
Data Sharing & Disclosure
We share your personal data only where necessary and with the following categories of recipient:
- Service providers and sub-processors — trusted third parties that support our platform operations, including cloud hosting providers, payment processors, analytics tools, and CRM systems. All sub-processors are bound by data processing agreements that restrict their use of your data to delivery of services on our behalf.
- Professional advisers — lawyers, accountants, and auditors who require access to data to provide professional services to us, subject to obligations of confidentiality.
- Regulatory and law enforcement authorities — where required to do so by law, court order, or regulatory direction, or where necessary to protect the rights, property, or safety of Talenbrium, our clients, or others.
- Business transfers — in connection with a merger, acquisition, restructuring, or sale of all or part of our business, your data may be transferred as part of that transaction. We will notify affected users in advance of any such transfer where required by law.
We do not share your personal data with any third party for their independent marketing or commercial purposes.
International Data Transfers
Talenbrium is headquartered in the United States. If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, your personal data will be transferred to and processed in the United States and potentially other countries outside your jurisdiction.
We implement appropriate safeguards for such transfers, including the use of Standard Contractual Clauses (SCCs) approved by the European Commission where required, and by ensuring that our sub-processors maintain equivalent protections. Where the UK GDPR applies, we use the International Data Transfer Agreement (IDTA) or addendum to EU SCCs as appropriate.
You may request a copy of the transfer mechanisms in place for your data by contacting us at privacy@talenbrium.com.
Data Retention
We retain your personal data for no longer than is necessary for the purposes for which it was collected, taking into account our legal obligations, any applicable limitation periods, and our legitimate business interests. The general retention periods we apply are:
| Data category | Retention period |
|---|---|
| Active client account data | For the duration of your subscription or contract, plus 36 months following termination |
| Billing and financial records | 7 years from the date of the transaction (legal and tax obligation) |
| Marketing contact data | Until you unsubscribe or withdraw consent, or 3 years of inactivity, whichever is sooner |
| Website and platform analytics | 26 months from collection (in line with standard analytics practice) |
| Research participation data | Anonymised within 90 days of completion; anonymised outputs retained indefinitely |
| Support and correspondence | 3 years from resolution of the query |
At the end of the applicable retention period, we securely delete or anonymise your personal data. Where deletion is not immediately possible (for example, because data is stored in backup systems), we isolate your data from further processing until deletion is possible.
Your Rights
Depending on your location and the applicable privacy law, you may have the following rights in relation to your personal data. We will respond to all valid requests within 30 days (or within the period required by applicable law). We may need to verify your identity before processing your request.
To exercise any of these rights, please contact us at privacy@talenbrium.com. If you are located in the EEA or UK and believe we have not addressed your concern adequately, you have the right to lodge a complaint with your local supervisory authority. In the US, additional rights may apply under your state's privacy law (including CCPA/CPRA for California residents).
Cookies & Tracking Technologies
We use cookies and similar tracking technologies on our website and platform to provide core functionality, understand how visitors use our services, and improve your experience. The types of cookies we use are described below.
| Cookie type | Purpose | Legal basis | Duration |
|---|---|---|---|
| Strictly necessary | Session management, authentication, and security. Required for the platform to function. | Contract / Legal obligation | Session / 24 hours |
| Analytics | Aggregate usage statistics collected via tools such as Google Analytics. Used to understand how visitors navigate our site and platform. | Consent | Up to 26 months |
| Functional | Remembering your preferences (language, display settings) to personalise your experience. | Legitimate interest / Consent | Up to 12 months |
| Marketing | Retargeting and conversion tracking via advertising platforms. Only placed with your explicit consent. | Consent | Up to 90 days |
You can manage your cookie preferences at any time by clicking the "Cookie Preferences" link in the footer of our website, or by adjusting your browser settings to block or delete cookies. Please note that disabling certain cookies may affect the functionality of our platform.
Data Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, disclosure, alteration, and destruction. These measures include:
- Encryption of data in transit using TLS and at rest using AES-256
- Role-based access controls limiting data access to authorised personnel
- Regular security assessments, penetration testing, and vulnerability management
- Incident response procedures designed to detect, contain, and notify affected parties of data breaches within the timeframes required by law
- Staff training on data protection responsibilities and security awareness
While we take data security seriously, no method of transmission over the internet or electronic storage is completely secure. If you believe your data has been compromised, please contact us immediately at privacy@talenbrium.com.
Children's Privacy
The Talenbrium platform and website are directed exclusively at business professionals and are not intended for use by individuals under the age of 18. We do not knowingly collect personal data from anyone under 18 years of age. If we become aware that we have inadvertently collected data from a minor, we will take steps to delete that data promptly. If you believe we may have collected data from a minor, please contact us at privacy@talenbrium.com.
Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our data practices, applicable law, or the structure of our services. When we make material changes, we will notify you by posting the updated policy on this page with a revised effective date, and — where required or appropriate — by sending you a direct notification by email.
We encourage you to review this policy periodically. Your continued use of our platform or website after the effective date of any updated version constitutes your acknowledgement of the revised policy.
Contact & Complaints
If you have questions about this Privacy Policy, wish to exercise your data rights, or have a concern about how we handle your personal data, please contact our privacy team:
Talenbrium Inc.
Houghton, Michigan, United States
Email: privacy@talenbrium.com
Phone: +1 (734) 418-0728
If you are located in the European Economic Area or United Kingdom and are not satisfied with our response to your concern, you have the right to lodge a complaint with the data protection supervisory authority in your country of residence or the country where the alleged infringement took place. In Ireland, this is the Data Protection Commission (dataprotection.ie). In the United Kingdom, this is the Information Commissioner's Office (ico.org.uk).