Redivivis

Privacy notice — candidates & staff

Controller: Redivivis OÜ (Estonia). Last updated: this notice explains how we handle your personal data under the GDPR and the Nigeria Data Protection Act (NDPA) 2023.

What we collect

Depending on whether you apply, are interviewed, or are employed: your name, contact details, CV and its contents, work history, application answers, salary expectation, interview notes, and — for staff — bank details, statutory IDs, salary and payslip data. If you sign an offer online, we also record the date/time, your IP address and (with your permission) approximate location.

Why we use it and our legal basis

Who we share it with

Service providers that process data on our behalf (hosting, database, email, AI screening, payments). A current list is kept in our sub-processor register, available on request. Some providers are outside the EEA (e.g. the US); transfers are protected by appropriate safeguards (such as Standard Contractual Clauses).

How long we keep it

We keep candidate data only as long as needed for the recruitment process and a reasonable period afterwards, then archive or delete it. Employee records are kept for the periods required by law.

Your rights

You can request access to your data, correction, erasure, or object to processing (including AI screening). Use the form below, or email us. You may also complain to a supervisory authority (Estonia: Andmekaitse Inspektsioon; Nigeria: NDPC).

Submit a data request

We will verify your identity before acting on the request.

Redivivis OÜ · www.redivivis.com