Skip to main content

Privacy Policy

Effective May 24, 2025

Table of Contents

  1. Introduction
  2. Data We Collect
  3. How We Use Your Data
  4. How We Share Information
  5. Cookies and Similar Technologies
  6. Your Choices and Rights
  7. Data Retention
  8. Security
  9. Cross-Border Data Transfers
  10. Lawful Bases for Processing
  11. California Privacy Rights
  12. Children's Privacy
  13. Changes to This Policy
  14. Contact Us

Introduction

Thrivania (“we,” “our,” or “us”) is an AI-powered talent ecosystem that connects candidates, employers, and co-founders. We are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform, including our website, applications, and related services (collectively, the “Services”).

This Privacy Policy applies to all users of our Services, whether you are a registered member (“Member”) or a visitor browsing our public pages (“Visitor”). By using our Services, you acknowledge that you have read and understood this Privacy Policy.

We may modify this Privacy Policy from time to time. If we make material changes, we will provide notice through our Services or by other means to give you the opportunity to review the changes before they become effective. Your continued use of our Services after changes are published constitutes your acceptance of the updated Privacy Policy.

1. Data We Collect

1.1 Data You Provide to Us

Registration

To create an account, you provide your name, email address, and password, or sign in through a third-party provider (such as Google, Microsoft, GitHub, or LinkedIn). If you use a third-party sign-in, we receive your name, email address, and profile photo from that provider.

Profile Information

You may provide additional information on your profile, such as your work experience, education, skills, career goals, personality assessments, Ikigai results, location, and professional summary. You choose what information to include; however, a more complete profile helps our AI matching algorithms provide better results. Please do not include sensitive personal information you would not want to be shared with potential employers or co-founders.

Content You Post

We collect data when you post content (articles, updates, comments), react to or share others' content, participate in challenges or assessments, upload resumes or documents, send messages, or submit job applications through our Services.

Communications

When you communicate through our Services (sending messages, connection requests, or chat with our AI assistant), we collect the content of those communications. We use automated systems to support features such as AI-powered profile generation, message notifications, and content moderation.

Payment Information

If you purchase premium services, we collect billing and payment information. Payment card details are processed by our payment service provider and are not stored on our servers.

1.2 Data from Others

Other Users

Other users may post content that includes information about you (such as mentioning you in posts or comments). Employers may provide feedback or application status updates that reference you.

Partners and Employers

We may receive information from employers or recruitment partners who use our Services, such as job application data or information about positions you may be eligible for.

Third-Party Sign-In Providers

When you sign in using Google, Microsoft, GitHub, or LinkedIn, we receive basic profile information (name, email, profile photo) as authorized by you through the provider's consent screen.

1.3 Data We Collect Automatically

Usage Data

We log usage data when you visit or use our Services, including pages viewed, content clicked, searches performed, features used, the date and time of your visit, and referring URLs. We use this data to understand how our Services are used and to improve them.

Device and Connection Information

We collect information about the devices you use to access our Services, including IP address, browser type and version, operating system, device identifiers, and general location information (city or region level) derived from your IP address. We do not collect precise GPS location.

Cookies and Similar Technologies

We use cookies, pixels, and similar technologies to recognize you, remember your preferences, understand how you use our Services, and improve your experience. See Section 5 for details.

1.4 AI-Generated and Inferred Data

Our AI systems generate inferences and insights about you based on the data you provide and your usage of our Services. This includes AI-generated profile summaries, personality type assessments, Ikigai analysis, skills recommendations, job match scores, and co-founder compatibility assessments. These AI-generated insights are stored as part of your profile and are used to improve matching accuracy. You can review and edit AI-generated content in your profile settings.

2. How We Use Your Data

2.1 Providing and Personalizing Our Services

  • • Creating and maintaining your account and profile
  • • AI-powered matching between candidates and job opportunities
  • • AI-powered co-founder matching and compatibility assessment
  • • Personalizing your feed with relevant content, job recommendations, and connection suggestions
  • • Facilitating messaging and communication between users
  • • Processing job applications and managing recruitment workflows
  • • Generating AI-assisted profile summaries, career insights, and skills recommendations
  • • Providing challenges and skills assessments

2.2 Communications

We contact you through email, in-app notifications, and push notifications about:

  • • Service availability, security alerts, and account-related notices (you cannot opt out of these)
  • • Application status updates and new job matches
  • • New messages and connection requests
  • • Platform updates, feature announcements, and promotional content

You can manage your notification preferences in your account settings.

2.3 AI and Automated Processing

We use artificial intelligence and automated systems to analyze your profile data, work history, skills, and preferences to generate match scores, career recommendations, and personalized content. Our AI assistant (powered by Azure OpenAI) helps you build your profile through conversational interviews. We use AI to moderate content and detect potential violations of our Community Guidelines. You can learn more about our approach to responsible AI in our Community Guidelines.

2.4 Research and Development

We use aggregated and de-identified data to conduct research on labor market trends, skills demand, and platform effectiveness. We may publish insights based on aggregated data that does not identify individual users. We use usage data to improve our matching algorithms, user experience, and service reliability.

2.5 Security and Fraud Prevention

We use your data to protect the security and integrity of our Services, prevent fraud, detect and investigate suspicious activity, enforce our User Agreement and Community Guidelines, and comply with legal obligations.

2.6 Analytics and Insights

We use your data to generate aggregated, non-identifying insights such as platform usage statistics, job market analytics, and skills trends. Employers may see aggregated data about applicant pools (e.g., number of applicants, general skill distributions) but not individual data without your consent.

3. How We Share Information

3.1 Your Profile and Public Content

Your profile is visible to other Members of our Services. Subject to your visibility settings, your profile may also be visible to Visitors. When you post content (updates, articles, comments), it is visible to others according to the audience you select. Social actions (likes, reactions, shares) are associated with your name and visible to others.

3.2 With Employers

When you apply for a position or are matched with a job opportunity, your profile information, application materials, and AI-generated match scores may be shared with the employer. Employers can see your profile when browsing candidates, subject to your visibility settings. We do not share your private messages, job search activity, or salary expectations with employers unless you explicitly choose to include them in an application.

3.3 With Co-Founder Matches

If you opt into the Co-Founder Hub, your startup passport and founder profile information may be shared with other users who are also seeking co-founders, subject to your settings.

3.4 Service Providers

We use third-party service providers to help operate our Services. These providers have access to your information only as necessary to perform their functions and are contractually obligated to protect your data. Our key service providers include:

  • Cloud infrastructure (Google Cloud Platform) for hosting and data storage
  • AI services (Microsoft Azure OpenAI) for AI-powered features
  • Authentication (Google, Microsoft, GitHub, LinkedIn) for social sign-in
  • Database (MongoDB) for data storage
  • Analytics and error tracking for service improvement and debugging
  • Email delivery for transactional and notification emails

3.5 Legal Requirements

We may disclose your information when required by law, subpoena, or legal process, or when we believe in good faith that disclosure is necessary to: (a) comply with applicable law or regulation; (b) enforce our User Agreement; (c) protect the rights, property, or safety of Thrivania, our users, or others; (d) investigate suspected fraud or security issues; or (e) respond to government requests. We will attempt to notify affected users about legal demands for their data when appropriate and not prohibited by law.

3.6 Business Transfers

If Thrivania is involved in a merger, acquisition, reorganization, or sale of assets, your personal data may be transferred as part of that transaction. We will provide notice before your data is transferred and becomes subject to a different privacy policy.

3.7 With Your Consent

We may share your information in other circumstances with your explicit consent.

We do not sell your personal information. We do not share your personal data with third parties for their direct marketing purposes without your permission.

4. Cookies and Similar Technologies

We use cookies and similar technologies to provide, secure, and improve our Services. Cookies are small text files stored on your device that help us recognize you and remember your preferences.

Essential Cookies

Required for the operation of our Services. These include authentication cookies (to keep you signed in), security cookies (to prevent fraud), and session cookies. You cannot opt out of essential cookies as they are necessary for the Services to function.

Functional Cookies

Allow us to remember your preferences and settings, such as your language preference, dark mode selection, and feed sort order. These cookies enhance your experience but are not strictly necessary.

Analytics Cookies

Help us understand how visitors interact with our Services by collecting and reporting information. This data is aggregated and used to improve our platform. We may use third-party analytics services that set their own cookies.

Most web browsers allow you to control cookies through their settings. However, limiting cookies may impact your ability to use certain features of our Services. For more details, see our Cookie Policy.

5. Your Choices and Rights

We provide you with choices about how your data is collected, used, and shared. You can exercise these rights through your account settings or by contacting us.

Access

Request a copy of your personal data. You can download your data at any time from your account settings.

Correction

Update or correct your information through your profile or settings. You can also contact us to request corrections.

Deletion

Request deletion of your account and personal data from your account settings. Some data may be retained as described in Section 7.

Portability

Export your data in a machine-readable JSON format. Download includes your profile, posts, and settings.

Additional Controls

  • Profile Visibility: Control who can see your profile (public, connections only, or private) in your visibility settings.
  • Email Visibility: Choose who can see your email address (everyone, connections only, or no one).
  • Messaging Controls: Control who can send you direct messages (everyone or connections only).
  • Directory Listing: Choose whether to appear in the Thrivania member directory.
  • Notification Preferences: Control which email notifications you receive.
  • Account Hibernation: Temporarily deactivate your account while preserving your data. Your account reactivates when you sign in again.
  • Co-Founder Hub: Opt in or out of co-founder matching features at any time.

6. Data Retention

We retain your personal data for as long as your account is active or as needed to provide you with our Services. If you request deletion of your account, we will generally delete or anonymize your data within 30 days, except where we need to retain data to:

  • • Comply with legal obligations (e.g., tax, legal reporting, or audit requirements)
  • • Resolve disputes and enforce our agreements
  • • Prevent fraud and abuse
  • • Maintain security and integrity of our Services

Content you have shared with others (such as posts and messages) may remain visible even after account closure, as we do not control copies that other users may have made. Hibernated accounts retain all data but are hidden from other users; they automatically reactivate on your next sign-in.

7. Security

We implement technical and organizational security measures designed to protect your personal data, including:

Encryption

All data in transit is encrypted using HTTPS/TLS. Passwords are hashed using bcrypt with industry-standard salt rounds.

Access Controls

Access to personal data is restricted to authorized personnel who need it to operate, develop, or improve our Services.

Infrastructure

Our Services are hosted on Google Cloud Platform, which provides enterprise-grade physical and network security.

Monitoring

We monitor our systems for security vulnerabilities, unauthorized access attempts, and suspicious activity.

While we take reasonable measures to protect your data, no method of transmission over the internet or electronic storage is 100% secure. We encourage you to use a strong, unique password for your account and to keep your sign-in credentials confidential.

8. Cross-Border Data Transfers

Thrivania processes data in the United States and potentially in other countries where our service providers operate. If you are located outside the United States, your information may be transferred to, stored, and processed in the United States or other countries that may have different data protection laws than your country of residence. We rely on legally recognized transfer mechanisms, including standard contractual clauses, to ensure that your data is protected in accordance with this Privacy Policy when transferred across borders.

For information specific to your region, please see our Regional Privacy Info pages covering the EU/EEA, United States, Brazil, Republic of Korea, Japan, Quebec, and Singapore.

9. Lawful Bases for Processing

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we process your personal data based on the following lawful bases:

  • Contract: Processing necessary to provide our Services to you (e.g., creating your account, matching you with opportunities, facilitating communications).
  • Consent: Where you have given us explicit consent to process your data (e.g., receiving marketing emails, participating in co-founder matching). You may withdraw consent at any time through your settings.
  • Legitimate Interest: Processing necessary for our legitimate business interests, such as improving our Services, conducting research, ensuring security, and preventing fraud, provided these interests are not overridden by your rights.
  • Legal Obligation: Processing necessary to comply with applicable laws and regulations.

10. California Privacy Rights

California residents have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):

  • Right to Know: You can request information about the categories and specific pieces of personal information we have collected, the categories of sources, the business purpose for collection, and the categories of third parties with whom we share your data.
  • Right to Delete: You can request deletion of your personal information, subject to certain exceptions.
  • Right to Correct: You can request that we correct inaccurate personal information.
  • Right to Opt-Out of Sale/Sharing: We do not sell your personal information. We do not share your personal information for cross-context behavioral advertising.
  • Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.
  • Right to Limit Use of Sensitive Personal Information: You can request that we limit the use of sensitive personal information to purposes necessary to provide our Services.

To exercise these rights, visit your account settings or contact us at privacy@thrivania.com. We will verify your identity before processing your request. You may also designate an authorized agent to make a request on your behalf.

11. Children's Privacy

Our Services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete that information promptly. If you believe a child under 16 has provided us with personal information, please contact us.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. If we make material changes, we will notify you by posting a prominent notice on our Services or by sending you an email at least 30 days before the changes take effect. We encourage you to review this Privacy Policy periodically. Your continued use of our Services after the effective date of any changes constitutes your acceptance of the revised Privacy Policy.

13. Contact Us

If you have questions, concerns, or complaints about this Privacy Policy or our data practices, please contact us:

Email: privacy@thrivania.com

Online: Contact form

If contacting us does not resolve your concern, you may have the right to lodge a complaint with your local data protection authority. Residents in the EEA may contact their national data protection authority. A list of EEA data protection authorities is available at edpb.europa.eu.

Related Policies

User Agreement

Terms governing your use of Thrivania

User Agreement Summary

A plain-language summary of key terms

Cookie Policy

How we use cookies and similar technologies

Copyright Policy

DMCA and intellectual property notices

Community Policies

Standards for professional conduct

Regional Privacy Info

Country-specific privacy disclosures