1. Who we are

ReLoop is legally operated through: SC RÂDEM GLUMIM S.R.L., contactable at hello@reloop.me.

This Privacy Policy explains how ReLoop processes personal data collected through the Website, order forms, communications, and product delivery workflows.

2. Categories of personal data

We may process the following categories of personal data:

• identification and contact data, such as name, surname, and email address;

• professional materials uploaded or submitted by the user, such as CVs, LinkedIn URLs, free-text candidate context, and job-related materials;

• role-side materials, such as company name, role title, and job description text;

• transaction data, such as product chosen, payment confirmation, and billing-related metadata received from Stripe;

• technical and usage data, such as IP-related logs, cookie identifiers, browser-level analytics, and website event data where analytics or advertising tools are active;

• communications data, such as messages sent to hello@reloop.me.

3. Sources of data

We collect personal data:

• directly from the data subject;

• from payment and website infrastructure providers;

• from public links submitted by the user, such as LinkedIn URLs.

4. Purposes and legal bases

We process personal data for the following purposes:

• To provide the purchased service, including intake, processing, generation, quality control, and delivery of the report.
  Legal basis: performance of a contract.

• To handle payments, invoicing, fraud prevention, and service administration.
  Legal basis: performance of a contract and legitimate interests.

• To reply to support requests, complaints, and legal requests.
  Legal basis: legitimate interests and legal obligations, as applicable.

• To store limited records required for accounting, tax, legal defence, and compliance.
  Legal basis: legal obligation and legitimate interests.

• To use optional customer data for talent-pool style features, profile discovery, or market intelligence only if the customer has separately opted in.
  Legal basis: consent.

• To run website analytics and advertising or remarketing tools, where enabled.
  Legal basis: consent for non-essential cookies and legitimate interests for strictly necessary security and operation logs.

5. Automated and AI-supported processing

ReLoop uses AI-supported tools, including Claude API, as part of the workflow that interprets submitted materials and helps generate digital reports.

AI-supported processing may produce probabilistic or imperfect outputs and is therefore subject to technical limitations, source-material dependency, and occasional inaccuracies.

Automated assistance does not constitute legally binding profiling, eligibility scoring for employment, or a guaranteed hiring recommendation.

6. Recipients and processors

We may share personal data with the following recipients or processors, to the extent necessary for the service:

• Squarespace, for website hosting and website operations;

• Stripe, for payment processing;

• Tally, for intake forms;

• n8n, for workflow automation;

• Claude API / Anthropic / Open AI, for AI-assisted interpretation and generation;

• Airtable, for workflow storage, records, and limited service-related data handling;

• Google Analytics and Meta Pixel, if enabled, for analytics and advertising measurement;

• professional advisers, accountants, IT support, or public authorities where legally required.

7. International transfers

Some processors may process or access data outside Romania or the EEA.

Where personal data is transferred internationally, ReLoop will rely on an appropriate transfer mechanism under applicable data protection law, such as adequacy decisions, standard contractual clauses, or another lawful safeguard.

8. Retention

Customer order data, form submissions, and service materials are retained for up to 1 year, unless a shorter or longer period is required by law, needed for legal defence, or justified by a separately given consent. Accounting and tax documents may be retained for the period required by Romanian law.

If a deletion request is made, ReLoop will assess what must be retained for legal compliance and what can be deleted or minimised.

9. Data subject rights

Subject to applicable law, data subjects may request:

• access;

• rectification;

• erasure;

• restriction;

• objection;

• data portability; and

• where processing is based on consent, withdrawal of consent.

Requests may be sent to hello@reloop.me.
A request to delete personal data does not necessarily cancel a contract, undo a completed service, or eliminate records that must be retained by law.

10. Complaints to a supervisory authority

Data subjects may also lodge a complaint with the Romanian supervisory authority for personal data protection or another competent supervisory authority in the EU.

11. Security

ReLoop uses reasonable technical and organisational measures appropriate to the nature of the service and the size of the business. However, no online transmission or storage environment is completely secure.