Talent Lab ("we", "us", "our") is committed to protecting and respecting your privacy. This policy explains what personal data we collect, how we use it, and your rights under the UK General Data Protection Regulation (UK GDPR).
1. What data we collect
When you submit a profile via our forms, we may collect:
- Your name and email address
- Your LinkedIn profile URL
- GitHub, HuggingFace, Google Scholar, or personal website URLs (if provided)
- Career history and skills data obtained via LinkedIn enrichment
- Qualification preferences: work type, day rate or salary expectations, remote preference, availability, notice period, location, and preferred contact method
2. How we use your data
We use your personal data to:
- Score your profile — We use AI to assess your skills, experience, and suitability for AI/ML roles
- Match you with jobs — We compare your profile and preferences against live job opportunities
- Contact you about opportunities — We may reach out via LinkedIn or email with relevant roles
- Improve our service — We analyse aggregated, anonymised data to improve scoring accuracy and job matching
3. Legal basis for processing
We process your data on the basis of consent. By submitting your profile through our forms, you consent to Talent Lab processing your data as described in this policy. You can withdraw your consent at any time by contacting us (see section 7 below).
4. Data retention
We retain your personal data for as long as you have an active profile with us, or until you withdraw your consent or request erasure. If you request deletion, we will remove your data within 30 days, except where we are legally required to retain it.
5. Third parties
We share your data with the following third-party services, solely for the purposes described above:
- Lemlist — Outreach automation (LinkedIn connection requests and email communication)
- Apify / HarvestAPI — LinkedIn profile enrichment to gather public career data
- Anthropic (Claude) — AI-powered profile scoring and analysis
These providers process data on our behalf and are bound by their own privacy policies and data processing agreements.
6. Your rights
Under the UK GDPR, you have the right to:
- Access — Request a copy of the personal data we hold about you
- Rectification — Ask us to correct any inaccurate or incomplete data
- Erasure — Request that we delete your personal data
- Restrict processing — Ask us to limit how we use your data
- Data portability — Request your data in a structured, machine-readable format
- Withdraw consent — Withdraw your consent at any time, without affecting the lawfulness of processing before withdrawal
7. Contact us
To exercise any of your rights, or if you have questions about this policy, please contact:
Jon Roberts
jon@midfieldgroup.co.uk
8. Supervisory authority
If you are not satisfied with our response, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO):
https://ico.org.uk/make-a-complaint/