Privacy Policy
BafGo provides multiple services — Interview (async video screening), VeriLogo (verification badges), and AI Patrol Engine (prompt safety analysis). This policy describes what each product collects, why, and how long it is kept.
1. Interview
For recruiters (account holders): email address, organisation name, and bcrypt-hashed password at registration. We store interview sets, questions, and reviewer access tokens you create.
For candidates: an ephemeral session token generated in the browser — never linked to a name or email unless the candidate voluntarily provides a name. Video responses are stored on BafGo's own servers and are never shared with or processed by third-party AI platforms.
For reviewers: a one-time access token. No name or email is required.
Video storage: Candidate video responses are stored on BafGo's own servers. Videos are never transmitted to any third-party AI platform, cloud AI service, or external processor.
Data retention: Interview responses and associated notes are automatically deleted 30 days after an interview set is closed. Recruiter accounts and set metadata are retained until the account is deleted.
No AI processing: We do not process, score, or analyse candidate responses with AI or machine learning. We will never introduce automated candidate scoring without explicit consent.
2. VeriLogo
For merchants (account holders): email address, business name, and bcrypt-hashed password at registration. We store verification badge configuration, customer logo images, and verification records you create.
For customers scanning a badge: no personal data is collected. Verification checks are stateless — badge state is confirmed via signed token, not via database lookup tied to the scanning user.
Data retention: Badge configuration and uploaded logo images are retained until the merchant account is deleted or the badge is revoked. Verification logs are retained for 90 days for abuse monitoring.
3. AI Patrol Engine
For account holders: email address and bcrypt-hashed password at registration. We store API keys (hashed), aggregated usage metrics (total checks, risk level counts, average response times), and billing period data.
Zero prompt storage: Prompts submitted to AI Patrol Engine for analysis are processed entirely in memory. We never write prompt content to disk, never log prompt text, never train on submitted prompts, and never correlate prompts across accounts. This is a core architectural guarantee.
What we store: For each analysis request, we record the safety score, risk level, detection flags triggered, response time in milliseconds, and whether semantic analysis was used. We explicitly do not store the prompt text, IP address, user agent, or any identifying metadata beyond the API key used.
Aggregated metrics only: Dashboard usage charts and billing data are built from anonymised aggregates. Individual prompt content is never retrievable — by design, it does not exist after the response is returned.
Data retention: Usage logs are retained for the duration of the account's active billing period plus 90 days for invoicing purposes. After that, only anonymous aggregate counts are preserved.
4. Cookies
We use HttpOnly JWT cookies to keep accounts signed in across all BafGo services. No tracking cookies, no advertising pixels, no third-party cookies.
5. Third Parties
We do not sell personal data. We do not share customer data with third parties. Payment processing is handled by Stripe under their own privacy policy. Video storage for Interview uses BafGo's own infrastructure.
6. Your Rights
Account holders may request deletion of their account and all associated data by emailing [email protected]. We will action deletion requests within 30 days.
7. Contact
Questions about this policy: [email protected]