1. Definitions & Legal Roles

To ensure absolute transparency regarding platform usage, data processing, and legal liability, we clearly define the roles of all parties:

• "User": A universal, collective term referring to any individual, business, or automated system that accesses, browses, or utilizes the Platform in any capacity. This encompasses Candidates, Hiring Entities, Account Owners, Account Admins, and general website visitors.
• "Candidate" (Data Principal): An individual taking a technical assessment or recording an interview on the Platform.
• "Hiring Entity" (Data Fiduciary): ANY business entity, recruiter, organization, hiring company, hiring manager, or any person hiring using InterviewMix.com (acting as or represented by an Account Owner or Admin) that invites a Candidate, assigns a test to a Candidate, and/or reviews a Candidate's results. This includes, but is not limited to:
  • Registered Companies (Pvt Ltd, LLC, Inc, Non-Profits, etc.)
  • Sole Proprietors & Freelancers
  • Recruitment Agencies & Staffing Firms
  • Individuals sending tests
  They own the assessment data, determine the purpose of the data collection, and are solely responsible for all final employment decisions.
• "Account Owner" (Master Account): The primary entity or individual who subscribes to InterviewMix.com for sending/conducting interviews, holds the billing relationship, legally binds the Hiring Entity, and has full rights to utilize assessment credits within given time limits.
• "Account Team Member / Admin" (Sub-Account): Any optional individual (including, but not limited to, HR, Hiring Manager, or Recruiter) invited by the Account Owner to join their workspace and administer tests using the Master Account's resources.
• "InterviewMix.com" (Data Processor): InterviewMix.com acts strictly as the technical infrastructure provider. InterviewMix.com processes Candidate data solely on behalf of, and under the instructions of, the Hiring Entity.
• Exceptions to our Data Processor Role: InterviewMix.com acts as an independent data controller/fiduciary only for the following limited technical operations:
  • Statistical Benchmarking (Percentile Calculation): InterviewMix.com retains numerical assessment scores and evaluation ratings in a permanently de-identified and aggregated format. This data is decoupled from the Candidate's personal identity and stored indefinitely to calculate global platform performance benchmarks, allowing InterviewMix.com's system to accurately determine which percentile a Candidate sits in relative to the historical testing pool.
  • AI Model Improvement: For optional features described in the "AI Model Improvement" section, InterviewMix.com processes data based solely on the Candidate's explicit consent.
• "Services" / "Platform": The entire suite of tools provided by InterviewMix.com, including, but not limited to, Candidate Assessments, remote proctoring, and AI analysis.
• "The Agreements": Refers collectively to the Terms of Service (TOS), the Master Services Agreement (MSA), and the Privacy Policy, which collectively govern the usage of the Platform.

2. Information We Collect

To provide our Services, we collect data from both the Candidates taking the assessments and the Hiring Entities (Account Owners and Admins) administering them.

3. How We Use a Candidate's Information

4. AI, Automated Decisions & Human Review

• Global AI Policy & LLM Integration: We integrate Artificial Intelligence, including Large Language Models (LLMs), to process candidate resumes, transcribe interviews, evaluate technical responses, and flag proctoring anomalies. We actively work to identify and minimize biases within our AI systems.
• Automated Employment Decision Tools (AEDT): Our Platform uses AI to generate integrity scores, code evaluations, and candidate summaries. These outputs are provided strictly as recommendations and suggestions to assist the Hiring Entity. InterviewMix.com does not make direct employment decisions. Candidates have the right to request human intervention regarding AEDT-based insights directly from the Hiring Entity.
• Mandatory Human Review: The Hiring Entity is contractually obligated to perform a human evaluation of the text-based transcripts, code submissions, proctoring flags, and AI-generated reports provided to them before making any final rejection or hiring decision. (Note: To protect Candidate privacy, raw video and audio media are never shared with the Hiring Entity).

5. Infrastructure & Security

To prevent targeted security threats, we employ a strategy of defense-in-depth and do not disclose specific vendor architecture. However, our security standards include:

• Cloud Hosting & Geographic Storage: Data is hosted on Tier-1 Enterprise Cloud Infrastructure with strict logical isolation. To ensure high availability and low latency, Candidate information may be securely transferred to, processed, and stored in secure data centers located outside the Candidate's country of residence. All international data transfers are conducted subject to legally mandated data protection safeguards.
• Ephemeral Processing: Live interview data and temporary state files are processed in logically isolated, in-memory data stores before being permanently written to our databases.
• Data in Transit: All data is encrypted using industry-standard cryptographic protocols.
• Data at Rest: Databases containing scores, personal data, and code are protected via advanced encryption standards.
• Media Assets: Video and audio recordings are secured via strict token-based access control and temporary URL signing, preventing unauthorized direct access.

6. Data Sharing, Liability & Breaches

We do not sell identifiable personal data. Any data that is commercialized is strictly aggregated and permanently anonymized. We share data only with:

7. Data Retention & Lifecycle

Because InterviewMix.com processes a Candidate's assessment data strictly on behalf of the Hiring Entity, the exact retention period for a Candidate's personal information is determined by both our system security limits and the Hiring Entity's internal policies.

8. Cookies & Tracking Technologies

Our Platform utilizes session cookies, local storage, and standard browser tracking. Because our core service is delivering secure, timed, and proctored assessments, all tracking technologies deployed during an assessment are classified as "Strictly Necessary."

• Session Stability & Crash Recovery: We use temporary cookies to track a Candidate's active session state. If a Candidate's machine crashes or a Candidate loses internet connection, these trackers allow the Candidate to log in from a different machine and resume the Candidate's active interview within a strict 5-minute window.
• Fraud Prevention & Refresh Limits: To ensure test integrity, the Platform enforces a strict limit of three (3) browser refreshes during an active assessment. Cookies and local storage are used to enforce this limit.
• No Opt-Out During Testing: Because these trackers are strictly necessary to ensure the integrity of the test and enforce anti-cheating protocols, Candidates cannot opt-out of them while taking an assessment. If a Candidate disables, blocks, or clears these cookies via the Candidate's browser mid-assessment, the Platform will block the Candidate's access, the Candidate's session will be invalidated, and the Candidate will not be able to complete the test.

9. Limitation of Candidate Access Rights

While global data protection laws (including the DPDP Act) generally grant users the right to access their personal data, InterviewMix.com legally restricts Candidates from accessing, viewing, downloading, or requesting copies of their assessment questions, code submissions, transcripts, or AI evaluation scorecards.

This restriction is strictly enforced under the following legal exemptions:

• Protection of Trade Secrets: Releasing test questions or custom code scenarios would violate the intellectual property rights and trade secrets of the Hiring Entity.
• Prevention of Fraud: Allowing Candidates to review the AI's exact evaluation metrics or proctoring triggers would allow malicious actors to reverse-engineer our anti-cheating algorithms, compromising the security of the Platform for all future users.

10. Age Limitations & Minors

InterviewMix.com is a B2B enterprise platform designed for employment and professional assessment. We do not market to or knowingly collect data directly from children under the age of 18 without authorization.

Hiring Entity Responsibility (Internships & Apprenticeships): If a Hiring Entity uses our Platform to assess candidates under the age of 18 (e.g., for internships or university placements), it is the strict legal responsibility of the Hiring Entity (the Data Fiduciary) to obtain verifiable parental or guardian consent prior to scheduling the assessment, as required by applicable law (such as the DPDP Act or GDPR).

If we are notified that a minor's data was uploaded by a Hiring Entity without the required legal consent, we will purge the data and notify the Hiring Entity of the compliance breach.