Privacy Policy

1. Introduction

MillerSoft ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our background screening services.

We operate as a data controller under the General Data Protection Regulation (GDPR) and comply with all applicable data protection laws.

2. Data Controller

3. Information We Collect

We collect information in the following categories:

3.1 Client Information

• Account registration details (name, email, company)
• Billing and payment information
• Communication records

3.2 Candidate Information (Subject to Screening)

• Personal identification data
• Employment and education history
• Criminal record information (where legally permitted)
• Professional licenses and certifications
• Reference contact information

3.3 Technical Data

• IP addresses and browser information
• Usage data and analytics
• Cookies and similar technologies

4. Legal Basis for Processing

We process personal data based on:

• Consent: Explicit consent obtained from candidates before screening
• Contract: Necessary for providing our services to clients
• Legal Obligation: Compliance with FCRA and other regulatory requirements
• Legitimate Interest: Business operations and service improvement

5. Data Retention

We retain personal data according to the following schedule:

6. Your Rights Under GDPR

You have the following rights regarding your personal data:

• Right of Access: Request a copy of your personal data
• Right to Rectification: Correct inaccurate personal data
• Right to Erasure: Request deletion of your data
• Right to Restriction: Limit how we process your data
• Right to Portability: Receive your data in a machine-readable format
• Right to Object: Object to processing of your data

To exercise these rights, please visit our Data Subject Request page or contact privacy@millersoft.tech.

7. Your Rights Under FCRA

If you are subject to a background check, you have the right to:

• Be informed that a background check may be conducted
• Provide written consent before the screening
• Receive a copy of the report upon request
• Dispute inaccurate information
• Receive pre-adverse and adverse action notices

8. Data Security

We implement appropriate technical and organizational measures to protect your data:

• 256-bit SSL/TLS encryption for data in transit
• AES-256 encryption for data at rest
• Role-based access controls
• Regular security audits and penetration testing
• Microsoft Azure cloud infrastructure with SOC 2 compliance

9. International Data Transfers

Data may be transferred to and processed in countries outside the European Economic Area. We ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission.

10. Cookies

We use essential cookies for site functionality and optional analytics cookies. For more information, please see our Cookie Policy.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

12. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us:

You also have the right to lodge a complaint with your local data protection authority.