Privacy Policy

Last updated: March 2026

Who we are

Opndig ("we," "us," "our") operates the Opndig recruiting platform at opndig.ai. We provide AI-powered recruiting tools that help staffing agencies and recruiters screen candidates, manage pipelines, and fill roles faster.

What we collect

Account data

When you sign up, we receive your name, email address, and organization membership from our authentication provider (Clerk). We store your user ID, organization ID, and role within your organization.

Recruiting data

Data you provide through the service: candidate profiles (names, emails, sources, background information), job requisitions (titles, descriptions, requirements), screening assessments, shortlist decisions, and pipeline stages. All actions are recorded in an immutable audit log that tracks who did what, when, and why.

Gmail data (when you connect Gmail)

If you connect your Gmail account, we access your email data through the Gmail API. This includes:

  • Reading emails: We monitor your inbox for recruiting-relevant signals — candidate replies, referral mentions, LinkedIn notifications, and hiring manager feedback. We access message headers (subject, sender, recipient, timestamp) and message content to extract recruiting intelligence.
  • Sending emails: When you authorize it, we can send emails and replies on your behalf — such as candidate follow-ups, check-ins, and outreach. Emails are only sent when you explicitly approve the action or configure automated rules.
  • OAuth tokens: We store your Gmail OAuth refresh token, encrypted at rest using AES-256-GCM encryption, to maintain your connection without requiring repeated sign-ins.

You can disconnect your Gmail account at any time, which immediately stops all monitoring and sending. Intelligence already extracted is preserved; disconnecting stops future access, not past insights.

Usage data

We log which capabilities are used, when, and by whom (human user, AI agent, or system process). This includes AI model usage metrics (token counts, response times) for service monitoring. We do not track your browsing behavior or use advertising cookies.

Waitlist data

If you join our waitlist, we collect your email address and firm size.

How we use your data

Your data is used solely to provide and improve the Opndig service:

  • Screening candidates against job requisitions using AI
  • Building and maintaining your recruiting pipeline
  • Generating briefings and activity summaries
  • Monitoring your Gmail for recruiting signals (when connected)
  • Sending emails on your behalf (only when you authorize it)
  • Maintaining a complete audit trail of all recruiting actions

We do not sell your data. We do not use your data to train AI models. We do not use your data for advertising, retargeting, or interest-based profiling.

Google API Services — Limited Use Disclosure

Opndig's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

  • We only use Gmail data to provide the recruiting features described in this policy — monitoring for recruiting signals and sending authorized emails on your behalf.
  • We do not transfer Gmail data to third parties unless necessary to provide the service, required by law, or part of a merger/acquisition with equivalent privacy protections.
  • We do not use Gmail data for serving advertisements of any kind.
  • Human employees do not read your email content unless you specifically request support involving a particular message, give us affirmative consent, or it is necessary for security purposes (investigating abuse or a security incident).
  • We do not use Gmail data to train generalized AI or machine learning models. AI processing of your email data is performed solely to deliver your personalized recruiting intelligence within the service.

Third-party services

We share data with the following service providers, solely to operate the Opndig platform:

  • Clerk — Authentication and organization management. Processes your login credentials, email, and org membership.
  • Google Cloud Platform — Infrastructure hosting (Cloud Run), secrets management, and Gmail API access via Google Pub/Sub for real-time inbox notifications.
  • Neon — PostgreSQL database hosting. Stores your recruiting data, event history, and encrypted Gmail tokens.
  • Anthropic — AI model provider (Claude). We send candidate profiles and job requirements to generate screening assessments. Anthropic does not use this data to train models under their commercial terms.
  • Doppler — Secrets management. Stores API keys and configuration, synced to Google Cloud.

Each provider processes data under their own privacy policies and data processing agreements. We do not sell or share your data with data brokers, advertisers, or any party not listed above.

Data security

We protect your data through:

  • Encryption in transit: All connections use TLS/HTTPS.
  • Encryption at rest: Gmail OAuth tokens are encrypted using AES-256-GCM with versioned keys that support rotation. Database storage is encrypted at rest by our infrastructure providers.
  • Multi-tenant isolation: All data is scoped to your organization. Queries are filtered by organization ID to prevent cross-tenant access.
  • Audit trail: Every action is logged with actor identity (human, AI agent, or system), timestamp, and session ID in an immutable event store.
  • Least-privilege access: API keys and service credentials use the minimum permissions required for each service.

Data retention

  • Recruiting data and audit trail: Retained for the lifetime of your account. The event log is append-only and forms the authoritative record of all recruiting actions.
  • Gmail tokens: Retained while your Gmail connection is active. Overwritten when you disconnect.
  • Account data: Retained while your account is active and for 30 days after deletion to allow recovery.
  • Waitlist data: Retained until you request removal.

Your rights

You can:

  • Disconnect Gmail at any time through the service, immediately stopping all inbox access and email sending.
  • Revoke Google permissions at any time through your Google Account settings.
  • Request data export — email privacy@opndig.ai and we will provide your data in a machine-readable format.
  • Request data deletion — email privacy@opndig.ai and we will delete your account and associated data within 30 days, except where retention is required by law.

AI and automated decisions

Opndig uses AI to screen candidates against job requirements, producing match scores, strengths, gaps, and recommendations. These are decision-support tools — they assist recruiters, they do not make hiring decisions. A human recruiter reviews every screening before any action is taken.

When the AI agent sends emails on your behalf, it does so only under rules you configure or actions you explicitly approve. You can review, edit, and revoke automated sending at any time.

Changes to this policy

We may update this policy to reflect changes in our practices or for legal reasons. We will notify you by email or through the service before material changes take effect.

Changelog

  • March 2026 — Complete rewrite. Added Gmail integration details (read and send access), Google API Limited Use disclosure, named third-party services, data security section, encryption details, user rights (export, deletion, revocation), and AI processing disclosure.
  • February 2026 — Initial version covering waitlist data collection, basic data usage, and third-party services.

Contact

Questions about privacy? Email privacy@opndig.ai.