CANDIDATES PRIVACY NOTICE
[Last Updated: December 11, 2025]
This job candidates’ privacy notice (“Candidates Privacy Notice”) describes what Personal Data (as defined below) we, Perion Network Ltd. and our affiliated companies and subsidiaries (collectively “Perion Group”, “we” or “us” or “our” ) collect and process on individuals applying to our offered job positions (“Candidates”, “you” or “your”) during the recruitment process and thereafter. This Candidates Privacy Notice applies to Candidates in the territory where we offer job opportunities, and is subject to applicable data protection laws (“Data Protection Laws”).
This Candidates Privacy Notice applies to the processing, sharing, and storing of Personal Data (as defined below) during, or after, the recruitment process, and is in addition to, and does not replace the privacy policies governing the use of our websites and services.
This Candidates Privacy Notice provides a comprehensive description of Perion Group’s data privacy and security practices – how it collects, processes and shares Personal Data, as well as explain the rights you have with regards to your Personal Data, how you can exercise them and how we safeguard Personal Data.
Perion Group is a global company with offices in various territories. We are committed to processing your Personal Data according to fair information practices and applicable Data Protection Laws. While this Candidates Privacy Notice is intended to describe the broadest range of our data practices globally, those practices may be more limited in some jurisdictions based on the applicable Data Protection Law. For example, the laws of a particular country may limit the types of Personal Data we can collect or the way we may process that data and retain it, where in other territories we will be required to retain Personal Data for longer periods. In those instances, we adjust our internal policies and practices to reflect such local requirements. This Candidates Privacy Notice further includes or incorporates specific information required under applicable Data Protection Laws for residents of certain jurisdictions, among others:
Israeli Candidates – Please note that you are not under any statutory obligation to provide Personal Data to Perion Group. Any Personal Data you provide to us is made at your free will and consent. However, if you will not provide us with certain Personal Data, we will not be able to fulfill certain purposes. For example, we must obtain certain types of Personal Data to know if you have the needed certifications or qualifications for the offered position, or to comply with our legal obligations (such as to ensure your legal right to work in Israel). Meaning – certain types of Personal Data are necessary for us to evaluate your application. Some other types of Personal Data shall be subject to your choice whether to share with us or not. All purposes are as described under Section 2 below “THE TYPES OF PERSONAL DATA WE PROCESS AND PURPOSE OF PROCESSING”.
EEA or UK Candidates – this Candidates Privacy Notice further details our lawful basis for processing Personal Data, information regarding cross border data transfer, how to contact our EU and UK Data Protection Representative and additional information we are required to disclose to you under the EU/UK General Data Protection Regulations (“GDPR”), including your rights related to your Personal Data under the GDPR.
California Candidates – this Candidates Privacy Notice further details the categories of Personal Information we collect, and additional information regarding our privacy practices as required under the California Privacy Rights (“CCPA”), including your rights related to your Personal Data under the CCPA.
It is important that you read this Candidates Privacy Notice, together with any other notices that might be provided on specific occasions when we are collecting Personal Data about you so that you are aware of how and why we are collecting and using such Personal Data. For any questions or concerns you might have regarding your Personal Data please contact our Data Protection Officer at: [email protected] . Please note that if you submit your application through our websites, such website’s privacy policy shall further apply and shall govern the data collection related to your access and use of the website.
1.DATA CONTROLLER INFORMATION
Under applicable Data Protection Laws, Perion Network Ltd and its affiliate or subsidiary which offers the job position you applied to, are considered as the “data controller” (or the “business” under the CCPA) of your Personal Data. This means that Perion Network Ltd and such Perion Group entity are responsible for deciding how we hold and use your Personal Data (as shall be described herein), as well as to enable you to exercise your rights.
For any question, inquiry or concern related to this Privacy Policy or the processing of your Personal Data, you may contact our privacy team as follows:
Perion Network Ltd.
Leonardo Da Vinci Street 2, Floor 24, Tel Aviv, Zip code 6473309 (Attn: Perion DPO)
[email protected]
Rickert Rechtsanwaltsgesellschaft mbH – Perion Network Ltd –
Colmantstraße 15, 53115 Bonn, Germany
Rickert Services Ltd UK
– Perion Network Ltd –
PO Box 1487, Peterborough, PE1 9XX, United Kingdom
HÄRTING Attorneys-at-Law Ltd.
Landis + Gyr-Strasse 1, 6300 Zug, Switzerland
2.THE TYPES OF PERSONAL DATA WE COLLECT AND THE PURPOSE
“Personal Data” or “Personal Information” refers to information that identifies, relates to, or could reasonably be linked with an individual by reasonable means. For example, it could include your name, email address, and other contact information (address, telephone number), etc. Personal Data may further include types of information defined under applicable Data Protection Laws as “Sensitive Data” under applicable Data Protection Laws (also defined as “Highly Sensitive Information” “Special Categories of Personal Data” and “Sensitive Personal Information” or the equivalent under applicable Data Protection Laws) which may include information such as governmental identification number or certificate, information that reveals racial or ethnic origin, religion, health related information, etc.
We will collect, store, and use various types and categories of Personal Data about Candidates, which may further include Sensitive Data. Those categories are detailed in the table below. Please note that the specific categories or types of Personal Data collected may vary depending on the position and legal requirements in the applicable territory.
This table represents the Personal Data that may be collected by us:
TYPES OF PERSONAL DATA THAT MAY BE COLLECTED (DEPENDING ON APPLICABLE LAWS)
PURPOSE OF COLLECTION AND USE
CATEGORIES UNDER THE CCPA[1]
LAWFUL BASES (APPLICABLE FOR CANDIDATES LOCATED IN THE EEA OR UK*[2])
▪ Personal identification information: such as name, date of birth, government-issued identification number, and copy of identification certificate (e.g., ID, passport, SSN).
▪ Contact information: such as email address, phone number, and address.
▪ Employment history: such as previous employers, job titles, dates of employment, responsibilities, achievements, etc.
▪ Education and qualifications: such as information on educational institutions attendance and dates, degrees or certifications obtained, fields of study, etc.
▪ Skills, abilities, and expertise: such as information related to the Candidate's relevant competencies, skills, language proficiency, and any other expertise that may be pertinent to the position being applied for.
▪ Assessment results: information gathered from tests, interviews, or assessments conducted during the recruitment process to evaluate the Candidate's suitability for the role.
▪ Background check information: information obtained through background checks , such as verification of employment and education history, and where applicable subject to law’s requirements or restrictions, information about criminal convictions and offences.
▪ Eligibility to work: information regarding the Candidate's legal right to work in the relevant country, such as citizenship or visa status.
▪ Communication and internal records: such as correspondence, and records or recordings of phone/video calls or other interactions between the Candidate and us during the recruitment process.
▪ Any additional information voluntarily included by the Candidate in its resume (CV), and supporting documents submitted by the Candidate.
▪ Job Application evaluation: to assess the Candidate's experience, qualifications, skills, and suitability for the position applied for, and in addition, subject to applicable Data Protection Laws, to identify potential matches with other open positions offered by us.
▪ Communication with the Candidate: to facilitate our correspondence and communications with the Candidate during the recruitment process, including scheduling interviews, providing updates, and addressing inquiries.
▪ Verification and reference checks: to verify the accuracy of the information provided by the Candidate, including employment history, education, and professional references, as well as conducting background checks where necessary and subject to applicable laws.
▪ Compliance with legal requirements: to ensure adherence to relevant employment laws, regulations, and industry standards.
▪ Eligibility to work: to confirm the Candidate's legal right to work in the relevant country and comply with immigration requirements, if applicable.
▪ Decision-making and selection: to facilitate the decision-making process, compare Candidates, and ultimately select the most suitable individual for the position.
▪ Record-keeping and documentation: to maintain a record of the recruitment process, including Candidate evaluations, assessments, and decisions, which may be used for future reference or to address potential disputes or legal claims.
▪ Administration and performance of human resources related duties, obligations, and procedures.
▪ Continuous improvement: to analyze and refine our recruitment strategies, practices, and processes.
Category A - Identifiers.
Category B -
Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)).
Category G –
Geolocation data
Category I –
Professional or employment-related information.
Category J –
Education information, defined as information that is not publicly available personally identifiable information as defined in the Family Educational Rights and Privacy Act (20 U.S.C. Sec. 1232g; 34 C.F.R. Part 99)
The lawful bases depend on the purpose for which we collect, use, and retain Personal Data.
We mainly collect and use the Personal Data under our legitimate interest, as needed to decide if to appoint a Candidate to a certain job position.
We may further retain certain types of Personal Data, under our legitimate interest, for the purpose of record keeping, compliance with applicable laws, evaluating our recruiting processes, and addressing potential disputes or legal claims.
In addition, we retain Personal Data where we are required to do so in order to comply with our legal obligations.
Where required under applicable Data Protection Laws, we will obtain your consent in order to retain and further use Personal Data for future job opportunities. You have the right to withdraw consent at any time.
▪ Sensitive Data: we may collect certain information that, depending on the applicable Data Protection Law, might be considered as Sensitive Data.
Sensitive Data will be collected solely where there is a specific law requirement or necessity to obtain it, or in the event provided voluntarily by the Candidate or otherwise where the Candidate provided its consent.
Such information may include Personal Data on about the privacy of a Candidate’s family life or personality, a personality assessment (conducted by a professional entity to evaluate significant personality characteristics) race, ethnicity, national origin, disability and medical or health condition, veteran or military status,or other protected characteristics, and certain data that might be gathered as part of background checks (such as criminal records, as set forth above).
▪ Record-keeping and documentation: to maintain a record of the recruitment process, which may be used for internal and external reporting responsibilities (e.g., legal and regulatory requirements), future reference or to address potential disputes or legal claims.
▪ Equal opportunity monitoring: we may ask for such information for the purpose of monitoring equal opportunity and ensuring diversity and inclusion.
▪ To ensure compliance with applicable laws or security standards: to the extent required or permitted by applicable law, we may conduct background checks that may involve criminal record information.
Note that, we do not discriminate, either directly or indirectly, on the grounds of sex, sexual orientation, gender, ethnic origin, religion, belief, marital status, nationality, national origin, color, age, or similar protected characteristics.
Category B –
Category C –
Protected classification characteristics under California or federal law.
Category L –
Sensitive personal information.
We collect these types of Personal Data subject to your consent. You have the right to withdraw consent at any time.
[1] This table also represents the categories of Personal Data, as classified and required under the California Consumer Protection Act (“CCPA”) which has been collected by Perion Group in the preceding 12 months.
[2]* Where the EU or UK General Data Protection Regulations apply, and as required under these regulations.
** Where the PIPEDA and/or other Canadian Privacy provincial laws apply, and as required under these laws.
3. CATEGORIES OF SOURCES OF PERSONAL DATA
We typically collect Personal Data about Candidates, as follows:
4. WITH WHOM WE SHARE YOUR PERSONAL DATA
We share your Personal Data with third parties, including within Perion Group and with our contractors, consultants, and service providers that help us with our recruitment process and operation as well as administration and performance of human resources related duties, obligations, and procedures, including where needed to comply with our legal obligations or to exercise and defend our rights. We take applicable measures to ensure your Personal Data will be accessed only by those who really need to in order to perform their tasks and duties, and to third parties who need such access in order to provide their services as required by us and in accordance with our instructions.
Below you can find information about the categories of such third-party recipients.
CATEGORY OF RECIPIENT
CATEGORY OF PERSONAL DATA
PURPOSE OF SHARING
Perion Group
All types of Personal Data
(Category A, B, C, G, I, J, L under the CCPA)
We may share Personal Data within our company group to allow us to manage our recruitment process as a business, at the organizational level, and for human resources management. This will include information shared with a third party including by way of merger, acquisition, bankruptcy, or purchase of all or part of its assets, your Personal Data may be shared with the parties involved in such event.
Contractors and service providers
We may disclose Personal Data to our trusted agents and service providers (including, for example, human resources agencies, recruitment management SaaS providers, cloud providers, legal counsel, etc.). We share your Personal Data with such third parties so that they can perform the requested services on our behalf. These entities are prohibited from using your Personal Data for any purposes other than providing us with requested services or complying with applicable laws.
Governmental agencies, or authorized third parties
Subject to law enforcement or a competent authority request.
In the event of legal and law enforcement, we may disclose certain Personal Data, such as in response to verified requests relating to criminal investigations or alleged illegal activity, or any activity that may expose us, you, or any other third party to legal liability, and solely to the extent necessary to comply with such purpose.
We may further share Personal Data where and to the extent needed to protect you, or third parties; enforce our policies and agreements or defend our rights, including the investigation of potential violations, alleged illegal activity, or addressing fraud or security issues; as well as in response to disputes, claims, demands, or legal proceedings involving you and us or any third party as required to defend our legitimate interests and as permitted under law. In addition, we may disclose Personal Data to third parties, in the event you request us to do so. In such event, the provision of your Personal Data will be subject to such third parties’ policies and practices only.
We do not “sell” your Personal Data to any third party nor “share” it, as defined under the CCPA, meaning, we do not disclose or share your personal information in exchange for money or other form of consideration. In addition, we will not process your Personal Data to perform automated decision-making (meaning, where a decision is taken about you using an electronic system without human involvement) which has a significant impact on you.
5. INFORMATION SECURITY & CROSS BORDER DATA TRANSFER
We take great care in implementing and maintaining the security of your Personal Data. We employ industry standard procedures and policies to ensure the safety of your Personal Data and prevent unauthorized disclosure or use of any such. In addition, we limit access to your Personal Data to those employees, agents, contractors, and other third parties who have the “need to know”. They will only process your Personal Data on our instructions. We have implemented technical, physical, and administrative security measures to protect the Personal Data we collect and store, including procedures to detect and manage suspected or actual security breaches.
Although we take reasonable steps to safeguard information, we cannot be responsible for the acts of those who gain unauthorized access or abuse our systems and network and will not always be able to prevent such access. Subject to applicable Data Protection Laws requirements, we will notify you and the appropriate authorities in the event that we discover a security incident or breach related to your Personal Data.
Due to our global operation, your Personal Data may need to be processed or accessed in provinces, states, territories and countries other than your jurisdiction, including, for example, when shared or accessed by our personnel, service providers or other affiliates. This may include the transfer of Personal Data from and to the State of Israel, the US, Canada or the EEA. We only transfer Personal Data to another country in accordance with applicable Data Protection Laws. We take appropriate measures to ensure that your Personal Data receives an adequate level of protection, including by using contractual obligations or other data transfer mechanisms that were pre-approved by applicable data protection authorities to ensure your Personal Data is protected.
6. DATA RETENTION
In general, we will only retain your Personal Data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, administrative, record keeping, or reporting requirements.
The criteria used by us to determine the retention periods are as follows:
We may further retain your Personal Data where you were not hired, to allow us to reconsider your application for alternative or future positions, and where required under applicable Data Protection Laws, we will obtain your consent. In addition, we may retain limited Personal Data as a reference for any future applications submitted.
7. YOUR RIGHTS RELATED TO YOUR PERSONAL DATA AND HOW TO EXERCISE THEM
We respect your privacy and your rights to control your Personal Data. You have the right to control and request certain limitations or rights to be executed with regard to the Personal Data we hold and process. Depending on the territory and the applicable Data Protection Laws and the exceptions under such laws, these rights may include one or more of the following principal rights:
The rights described above are not absolute rights and may be subject to certain legal, business or contractual requirements. Applicable Data Protection Laws may allow or require us to deny or partially deny your request.
You may exercise your rights in relation to your Personal Data by filling out the Data Subject Request Form available HERE .
If you are an EU, UK or Switzerland resident, you may also submit the request to exercise your right to our Data Protection Representative, using the contact information details under Section 1 of this Candidates Privacy Notice.
We sometimes need to request specific information from you to help us confirm your identity and ensure the requested rights apply to you. This is another appropriate security measure to ensure that Personal Data is not disclosed to any person who has no right to receive it. Information provided in connection with such a request will be processed only for the purpose of processing and responding to your request, and it may be shared with our legal and administrative teams.
8. AMENDMENTS
We reserve the right to periodically revise this Candidates Privacy Notice, which will have immediate effect upon posting of the revised Candidates Privacy Notice. We recommend you review this Candidates Privacy Notice periodically to ensure that you understand our privacy practices and to check for any amendments.
If the changes we make are significant, we will provide a more prominent notice and/or obtain consent where required by applicable laws.
