Privacy Policy

1. Who we are

This Privacy Policy applies to dolphinposted.org, owned and operated by Dolphin Group ("we", "us", "our").

Dolphin Posted is a workforce and recruitment platform connecting job seekers across Europe with client companies in Sweden and other markets. Dolphin Group acts as the data controller for the personal data collected through this website.

For questions about this policy or how we handle your data, contact us at info@dolphinposted.com.

2. What data we collect

We may collect the following categories of personal data:

Identity data: first name, last name, date of birth, nationality
Contact data: email address, phone number, postal address
Professional data: CV, work experience, education, skills, references
Account data: username and encrypted password (if you register an account)
Communication data: messages sent to us via forms, email or phone
Technical data: IP address, browser type, operating system, pages visited, time and date of visits
Marketing preferences: your choices about receiving communications from us

We do not intentionally collect sensitive personal data (such as health information, racial or ethnic origin, or criminal records) unless it is strictly necessary and you have given explicit consent.

3. How we collect it

We collect personal data through:

Direct interactions — when you fill in forms, apply for jobs, register an account, or contact us
Automated technologies — cookies and similar tracking technologies when you browse our website (see section 9)
Third parties — recruitment partners, referees or other organisations that refer candidates to us

4. Legal basis for processing

Under the General Data Protection Regulation (GDPR), we rely on the following legal bases to process your personal data:

Consent — where you have given us clear consent, for example to send you marketing communications or newsletters
Contract — where processing is necessary to fulfil a contract with you, or take steps before entering into a contract (e.g. processing a job application)
Legitimate interests — where processing is in our legitimate business interests and not overridden by your rights (e.g. improving our services, website analytics)
Legal obligation — where we must process data to comply with applicable law

Where we rely on consent, you have the right to withdraw it at any time. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.

5. How we use your data

We use your personal data to:

Process job applications and match candidates with client companies
Manage your account and provide our services
Communicate with you about job opportunities and our services
Send marketing communications where you have consented
Improve and personalise the Website experience
Comply with legal and regulatory obligations
Detect and prevent fraud or misuse of our services

6. Who we share data with

We do not sell, trade or rent your personal data to third parties.

We may share your data with:

Employers and clients — where you have applied for a specific job or consented to your profile being shared
Service providers — trusted third parties who help us operate the Website and our services (e.g. hosting providers, IT support), who process data only on our instructions
Legal and regulatory authorities — where required by law, court order or other legal process
Business transfers — in the event of a merger, acquisition or sale of assets, your data may be transferred as part of the business

All third parties are required to handle your data in accordance with applicable data protection law.

7. How long we keep data

We retain personal data only for as long as necessary for the purposes it was collected, including to satisfy legal, accounting or reporting requirements.

Job application data: up to 2 years from the date of application, unless you ask us to delete it sooner
Account data: for as long as you maintain an active account, plus a reasonable period thereafter
Technical and analytics data: typically up to 26 months
Marketing consent records: until you withdraw consent

When data is no longer required, we securely delete or anonymise it.

8. Your rights

Under GDPR, you have the following rights regarding your personal data:

Right of access Request a copy of the personal data we hold about you.

Right to rectification Ask us to correct inaccurate or incomplete data.

Right to erasure Request deletion of your data ("right to be forgotten") in certain circumstances.

Right to restriction Ask us to restrict processing of your data in certain situations.

Right to portability Receive your data in a structured, machine-readable format.

Right to object Object to processing based on legitimate interests or for direct marketing.

To exercise any of these rights, contact us at info@dolphinposted.com. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection authority.

9. Cookies

Our Website uses cookies — small text files stored on your device — to make the site work, remember your preferences and analyse usage.

Essential cookies: required for the Website to function (e.g. session management, security). Cannot be disabled.
Analytics cookies: help us understand how visitors use the site, so we can improve it. Used only with your consent.
Preference cookies: remember settings such as language selection.

You can control or disable cookies through your browser settings at any time. Disabling cookies may affect how the Website functions.

10. International transfers

Dolphin Group operates across Europe. Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA).

Where we transfer data outside the EEA, we ensure appropriate safeguards are in place — such as Standard Contractual Clauses (SCCs) approved by the European Commission — to protect your data in accordance with GDPR.

11. Data security

We take the security of your personal data seriously and have implemented appropriate technical and organisational measures to protect it against unauthorised access, loss, alteration or disclosure.

These measures include encrypted data storage, restricted access controls, and regular security reviews. However, no method of transmission over the internet is completely secure, and we cannot guarantee absolute security.

If you believe your data has been compromised, please contact us immediately at info@dolphinposted.com.

12. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. Any changes will be posted on this page with an updated date at the top.

We encourage you to review this policy periodically. Where changes are material, we will make reasonable efforts to notify you directly.

Contents