Skip to content
ThinkATS

Privacy Policy

How ThinkATS collects, uses, and protects your data.

Last updated: March 2026 · ThinkATS Technology Solutions Limited (RC 9151027)

1. Introduction

ThinkATS Technology Solutions Limited ("ThinkATS", "we", "our") is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect information when you use the ThinkATS platform, including thinkats.com and all associated subdomains.

This policy is governed by the Nigeria Data Protection Act 2023 (NDPA) and is written to be consistent with international data protection best practices.

2. Data we collect

We collect information in the following categories:

  • Account data: Name, work email address, company name, and role when you create a workspace.
  • Candidate data: Name, email, phone number, CV/resume, work history, education, skills, and application responses submitted through careers sites powered by ThinkATS.
  • Usage data: Actions performed within the platform, including jobs published, applications reviewed, and stages changed. This data powers our audit log system.
  • Billing data: Processed by our payment provider (Paystack). ThinkATS does not store full card numbers.
  • Technical data: IP addresses, browser type, and access logs for security and platform stability purposes.

3. How we use your data

  • To operate and maintain the ThinkATS platform
  • To score and rank candidates against job requirements (Application Intelligence)
  • To send transactional emails including application confirmations, interview invites, and offer letters
  • To maintain audit logs for compliance and governance
  • To process billing and subscription management
  • To improve the platform through aggregated, anonymized usage analytics

4. Data storage and security

ThinkATS is built on a multi-tenant architecture with row-level security (RLS) enforced at the database layer. This means one organization's data is strictly isolated from another's — not just at the application layer, but at the database level.

Data is stored on AWS infrastructure. Candidate data submitted through careers sites is tied to the tenant workspace and is never shared with other tenants.

5. Data sharing

We do not sell personal data. We share data only with:

  • Supabase — database and authentication infrastructure
  • Resend — transactional email delivery
  • Paystack — payment processing
  • AWS — cloud hosting infrastructure

All sub-processors are contractually bound to data protection obligations consistent with applicable law.

6. Your rights

Under the NDPA 2023 and applicable data protection law, you have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your personal data (subject to legal retention requirements)
  • Object to or restrict certain processing activities
  • Data portability — receive your data in a machine-readable format

7. Retention

We retain account data for the duration of your subscription and for a reasonable period thereafter. Candidate data is retained for as long as the hiring organization's account is active. You may request deletion at any time.

8. Contact

For privacy inquiries, data access requests, or to exercise your rights: privacy@thinkats.com

ThinkATS Technology Solutions Limited · RC 9151027 · Lagos, Nigeria