inFeed
Go to Home page

Privacy Policy

1. Transparency

How data is processed: inFeed processes user data strictly for purposes directly linked to user account management, job matching, platform communication, and payment processing for premium services. Each type of data processing is clearly documented, and users are informed at the point of data collection.

Where user data is stored: All user data is stored securely in cloud infrastructure provided by Neon, a GDPR-compliant European database provider.

Cloud services and server location: We utilize Neon.tech, which hosts data on servers located within the European Economic Area (EEA), ensuring compliance with EU data sovereignty regulations.

Access by server providers: The database provider, Neon, has access to the data as it handles data storage, retrieval and other operations within the database. As a subprocessor, Neon processes data on behalf of organizations using their platform. For more information about Neon’s security, visit this link.

Web Hosting and Deployment: inFeed is hosted on Vercel, a GDPR-compliant cloud platform that provides infrastructure for website delivery and performance optimization. Vercel may process limited technical data (such as IP addresses and request headers) solely for the purpose of delivering the website securely and efficiently. All data remains within the European Economic Area (EEA) or other jurisdictions deemed adequate under GDPR.

2. User Data Collection

Required data for account creation: Name, email address, and password are mandatory to create an inFeed account.

Optional data users may provide: Users may voluntarily add details like education, skills, location preferences, CV uploads, and job-seeking interests to improve job-matching recommendations. All such inputs are optional and can be updated or deleted at any time.

3. User Rights

We fully support and operationalize the rights guaranteed under GDPR Articles 15-22. Users can:

  • Access: Request a copy of their personal data by contacting us at contact@infeed.no.
  • Rectification: Edit their personal data through their profile settings or by contacting us.
  • Erasure: Request account and data deletion by email.
  • Data Portability: Request their data in a machine-readable format (e.g., CSV) via email.
  • Restriction of Processing: Request a pause or limitation on how their data is processed.
  • Object to Processing: Opt-out of data processing (especially marketing) at any time.
  • Challenge Automated Decisions: Request human intervention in any job matching or filtering decisions by contacting support.

All requests are verified and processed within 30 days.

4. Consent

  • Consent is obtained during sign-up via checkbox for the Privacy Policy and Terms of Use.
  • Cookies and tracking permissions are collected through a banner on first platform access.
  • Users can manage or withdraw consent at any time via account settings or by emailing support.
  • Consent is clearly separated for different purposes: account creation, data processing, and marketing.

5. Legal Basis for Processing

  • Consent: For marketing and optional data usage.
  • Contract necessity: For core services like account management, job matching, and user communication.
  • Legitimate interest: For platform optimization, fraud prevention, and internal analytics (explained in this policy).

6. Third Parties

No third-party institutions like universities have direct access to user data unless users explicitly consent (e.g., for institutional accounts or job matching partnerships, which are not active at the moment).

7. Subprocessors

We use the following subprocessors to operate our services:

  • Neon.tech – Cloud database hosting within the EEA (data storage and retrieval).
  • Amazon Web Services (AWS) – For file uploads and hosting job attachments (e.g., CVs).

All subprocessors are GDPR-compliant and bound by data processing agreements. We monitor their compliance on an ongoing basis.

8. Account Security and Two-Factor Authentication

  • Two-factor authentication (2FA) is in place.
  • Security measures include encrypted data storage, regular audits, strong password enforcement, and limited internal access based on roles and responsibilities.

9. Cookie Policy

What are Cookies

Cookies are small text files stored on your device when you visit our website. They help us provide you with a better user experience and enable certain functionalities of our platform.

Cookie Consent

We operate on a consent-first basis for all non-essential cookies. When you first visit inFeed, you will see a cookie banner that allows you to:

  • Accept all cookies
  • Reject non-essential cookies
  • Customize your cookie preferences by category

Your consent choices are stored and respected throughout your use of our platform. You can withdraw or modify your consent at any time through our cookie preference center or by contacting us at contact@infeed.no.

Types of Cookies We Use

Essential Cookies (No consent required)

  • Session cookies: Keep you logged in during your visit
  • Security cookies: Protect against cross-site request forgery and other security threats
  • Preference cookies: Remember your language and accessibility settings

These cookies are necessary for the platform to function and cannot be disabled.

Functional Cookies (Consent required)

  • Authentication cookies: Remember your login status across sessions
  • User preference cookies: Store your job search filters and notification preferences
  • Form data cookies: Temporarily store form information to prevent data loss

Analytics Cookies (Consent required)

  • Performance cookies: Help us understand how users interact with our platform
  • Usage analytics: Track page views, session duration, and user journeys (anonymized)

These cookies help us improve our services but are not essential for basic functionality.

Marketing Cookies (Consent required)

  • Targeting cookies: Enable personalized job recommendations
  • Communication cookies: Track engagement with our emails and notifications
  • Social media cookies: Enable sharing features and social login options

Cookie Duration

  • Session cookies: Deleted when you close your browser
  • Persistent cookies: Stored for specific periods ranging from 30 days to 2 years, depending on their purpose
  • Authentication cookies: Typically expire after 30 days of inactivity

Managing Your Cookie Preferences

You can control cookies through:

  1. Our Cookie Preference Center: Access via the cookie banner or account settings
  2. Browser Settings: Most browsers allow you to block or delete cookies
  3. Contact Us: Email contact@infeed.no to update your preferences

Third-Party Cookies

We may use cookies from trusted third-party services:

  • Vercel: For website performance and delivery optimization
  • Analytics providers: For anonymized usage statistics (only with your consent)

All third-party cookie providers are GDPR-compliant and process data according to our data processing agreements.

Cookie Updates

We may update our cookie usage from time to time. We will notify you of significant changes through our platform or via email, and request fresh consent where required by law.

For questions or concerns about this Privacy Policy, please contact contact@infeed.no.