Cookies help us deliver our services. By using our services, you agree to our use of cookies.

Privacy Policy

Last Modified: 9th of November, 2018

1. Introduction

Birch (We, us, our), the data controller, is committed to protecting the privacy of all the users and those who interact with our services (you, your). This includes the student/graduate members, the employers, the third parties/suppliers ofBirchand other individuals whose data we possess. This Privacy Policy outlines how we collect, use and protect your personal data and your rights in connection with that personal data.

2. The individuals who are covered by this Policy

The individuals whose personal data we may process includes:

  • The users who sign up to the Birch platform for the purposes of connecting with potential employers - including graduates and students
  • The potential employers and the individuals within those employers whose personal data we may hold so as to provide our service – in particular any contact information of individuals we may need to interact with those potential employers.
  • The personal data of any suppliers or third parties we may do business with. This includes professional service providers, partners, vendors, etc.
  • The personal data that we may receive about individuals who have not directly interacted with Birch, but whose data has been shared with us. For instance, this may include the personal data of any referee information that is provided by the end users.

3. The personal data we collect

The personal data we collect and use includes the following:

  • Identity and profile information: name, email address, state and country, gender, profile photo, etc.
  • CV data: visa information, nationality,, relocation (if they are willing to relocate to other areas), third level education, languages, certification (qualifications), projects on which the user may have been involved in, work experiences, job types (entry level, internship, full-time, etc.), relevant industry (healthcare, data science, etc),other relevant CV information.
  • Any additional content data that you may choose to share on the platform that could identify you or make you identifiable.
  • Financial data we may collect as part of the provision of any services.
  • Cookies and similar technologies.
  • IP address
  • Analytics information: through the use of our service, we may generate certain analytics information about our users and potential employers on our platform
  • Non-user information: personal data that may be provided to Birch from a source that is not active on the platform (for example any referees of users or where an existing user may seek to refer a friend to use the Birch service).
  • Sensitive personal data such as race, ethnicity and date of birth may optionally be provided

4. The Purposes and grounds on which Birch will process your personal data

We process your personal data for the purposes of performing our contract with you, these purposes include:

  • Allowing you upload your profile and CV data online.
  • Linking users with potential employers based on their suitability, aptitude and interests for certain roles. This will include the sharing of your CV information with the potential employers.
  • Linking potential employers with users based on their suitability, aptitude and interests for certain roles. This may include the sharing of the potential employer’s details with the user so as to allow the user to see the status of their online profile.
  • Allowing Birch manage any business relationships with third parties and suppliers.

The provision of personal data is essential for the operation of the contract. In instances where the personal data is not provided or if the personal data is not processed it will not be possible for us to offer our services to you. We process your personal data so that we can pursue our legitimate interests, which include the following:

  • Improving our services. We may use your information to improve and customise the services we offer you. This allows us to better understand how our services are being used and to examine ways in which we can develop the Birch services by improving both the service offering and the efficiency of the platform.
  • Security. We will use your information to prevent the compromising of our services. We will use your information (and share it where appropriate) so as to prevent spamming, harassment, crime, etc.
  • Communication. We may use your personal data to respond to any queries you may send to us directly and to gather feedback on your experience on the platform.
  • Direct marketing. We may use your personal data to communicate with you for reasons of direct marketing about our services. We will also seek your consent to direct marketing and offer you an opportunity to unsubscribe from any marketing communications.
  • Assisting in the recruitment process. Where your details have been provided as a potential referee, we will use this as part of the engagement with employers and share it with these potential employers.

We process your personal data so that we can comply with our legal obligations, which include the following:

  • Legally complying with any obligations that may arise in relation to the detection of crime or suspected fraud. This may include any anti money laundering obligations. It may also include where we are required by law to share your information with law enforcement authorities.

In certain circumstances, we may also rely on your explicit consent to process certain categories of sensitive personal data.

It is important to note that where you provide Birch with the personal data of third parties, it is your responsibility to inform those individuals of their rights and to obtain their consent, where necessary, to the processing of that personal data.

5. Sharing of Personal data

We will share your personal data with a number of relevant parties.

If you are a user (student, graduate, etc) or an individual who have had your data shared with Birch we will share your data with the following recipients:

  • Potential employers which will be necessary in order to provide the service and ultimately offer the user a position within the potential employer.
  • Third parties and suppliers, who may need to access your personal data for the purposes of carrying out services in connection with Birch. This may include any outsourced IT functions or any professional services that Birch may engage.
  • Appropriate data processors including IT service providers. This may also include cloud storage providers

If you are a potential employer, or a person connected to a potential employer, we may share your information with

  • Users, so as to allow for the provision of the service and to allow those users connect with potential employers directly.
  • Third parties and suppliers, who may need to access your personal data for the purposes of carrying out services in connection with Birch. This may include any outsourced IT functions or any professional services that Birch may engage.
  • Appropriate data processors including IT service providers. This may also include cloud storage providers
  • Payment service providers who take care of the paid services on the platform.

If you are a third party, whose data has been provided to us by a user (as a referee for instance), we may share your data with: li Potential employers li Third parties and suppliers, who may need to access your personal data for the purposes of carrying out services in connection with Birch. This may include any outsourced IT functions or any professional services that Birch may engage. li Appropriate data processors including IT service providers. This may also include cloud storage providers.

If you are a third party or supplier, who is engaged in the provision of services to Birch, we may share your data with other third parties or data processers as already outlined above.

6. Transfers

Your personal data may be disclosed and transferred to a country outside of the European Economic Area (EEA) in order for us to provide our services. Some of these countries may not have the same levels of data protection as are present in the EEA. In these instances we take measures to ensure the protection of your personal data when it is transferred to these third countries.

We may use a legal mechanism known as “standard contractual clauses” to protect personal information that is transferred outside the EEA. Standard contractual clauses refer to contracts between companies transferring personal information that contain standard commitments which have been approved by the European Commission protecting the privacy and security of the information transferred. These standard clauses are included in relevant contract where such international transfers may take place.

In some instances we may transfer your personal data outside the EEA but to countries which are deemed to have adequate protections in place pursuant to adequacy decisions issued by the European Commission. A list of countries which are subject to an adequacy decision are available here.

You can access a copy of the standard contract clauses on the website of the European Commission here.

7. Cookies

We use cookies and similar technologies to administer our services, remember your settings and to gather analytics information about our users. Any marketing partners and those who offer us analytic services and any online support services that we may engage will also use cookies and similar technologies.

You may withdraw your consent to the use of certain cookies and similar technologies via your browser settings or in-device settings. Limiting the use of cookies and similar technologies will still allow access to our services but some of the functionality of our service may be limited as a result.

8. Retention of Data

We retain your information for no longer than the period necessary to fulfil the purposes outlined in this Privacy Policy or such longer retention period as may be required or permitted by applicable law. For example, we may hold onto your information to comply with any of our legal obligations, to resolve disputes, to enforce our agreements or as otherwise permitted by law.

9. Your rights

You have certain rights in relation to your personal data in certain circumstances, namely:

  • Right of access: You have a general right to find out if we hold and personal data relating to you. You also have a general right to obtain a copy of any such personal data we hold on you.
  • Right to rectification: You have the right to rectify any information we hold about you that is inaccurate.
  • Right to erasure: You have the right, in certain cases, to have erased any information we hold about, provided there is valid grounds for doing so.
  • Right to restriction: You have the right, in certain cases, to temporarily restrict the processing of your personal data, provided there is valid grounds for doing so.
  • Right to data portability: You have the right, in certain cases, to obtain a commonly used machine-readable copy of the electronic information you provided to us for transfer to you or another controller if required.
  • Right to object: You have the right, in certain limited cases, to object to the processing of your personal data.

If you wish to exercise any of the above rights, you should contact us at [email protected] To help us process your requests, we ask you to provide us with your full name; your specific request; the date of the application.

You also have a right to lodge a complaint with the Data Protection Commission or your local supervisory authority if you are unhappy with how we have processed your data. You may contact the Data Protection Commission at  [email protected] or 1890 252 231.

10. Contact Us

If you have any questions about this Privacy Policy, or any concerns or complaints in relation to our processing activities, you can contact us at: [email protected]

11. Changes to this privacy notice

We will contact you via email about any material changes to this Privacy Policy so you are always aware of what information we collect, how we use it, and under what circumstances, we disclose it.