Effective Date: 02/26/2026

Entity: Minotaur.io LLC (Florida)

 

This Privacy Policy describes how Minotaur.io LLC (“Minotaur,” “we,” “us,” or “our”) collects, uses, and governs personal information in connection with Minotaur Sales, Minotaur ATS, and related services (the “Services”).

1. Our Data Roles

Minotaur operates under a dual-role data governance model depending on the source of the data:

(a) Client-Uploaded Data (Processor Role): Where customers upload contacts, resumes, or other data into Minotaur Sales or Minotaur ATS, the customer acts as the Controller and Minotaur processes such data solely on the customer’s documented instructions pursuant to the applicable Data Processing Addendum (DPA).

(b) Minotaur-Owned Datasets (Controller Role): For data made available through Minotaur Sales, the collaborative recruitment database, or other platform-curated datasets, Minotaur acts as an independent Controller. Customers receive licensed access rights but do not obtain ownership of such datasets.

(c) Collaborative Contributions: When users contribute candidate information to a collaborative pool, they represent that they have a lawful basis to do so. Upon contribution, Minotaur governs the collaborative database as Controller for purposes of platform administration, data quality management, and lawful access licensing. Collaborative data may be made available to other authorized users within applicable platform visibility controls.

2. Information We Process

Depending on context, we may process:
• Professional identifiers (name, title, employer)
• Business contact information (business email, business phone)
• Personal contact information used for professional purposes
• Resume data and employment history
• Account and authentication information
• Usage, audit, and access logs

3. Data Retention

Retention periods vary depending on data source and role. Platform-curated datasets are subject to structured refresh, stale marking, and purge cycles. Client-Uploaded Data is retained in accordance with customer instructions and contractual obligations. Where deletion is requested, Minotaur may retain minimal suppression identifiers to prevent re-ingestion.

4. Your Rights

Individuals may exercise applicable data rights as described in our Data Rights & Removal Policy. Requests may be submitted to privacy@minotaur.io.

5. Security

We implement reasonable technical and organizational safeguards consistent with our Security Overview. No method of transmission or storage is completely secure.

6. International Transfers

Where required, Minotaur implements appropriate safeguards for cross-border data transfers, including contractual protections where applicable.

7. California (CPRA) Notice

California residents may have additional rights under the California Privacy Rights Act (CPRA), including rights to know, delete, correct, and limit use of certain information. Minotaur does not sell personal information. Sensitive personal information is processed only as permitted by law.

8. Changes to This Policy

We may update this Privacy Policy periodically. The updated version will be posted with a revised effective date.

Contact: privacy@minotaur.io