This website uses cookies to ensure you get the best experience.

Sumsub and our selected partners use cookies and similar technologies (together “cookies”) that are necessary to present this website, and to ensure you get the best experience of it. If you consent to it, we will also use cookies for analytics purposes.

See our Cookie Policy to read more about the cookies we set.

You can withdraw and manage your consent at any time, by clicking “Manage cookies” at the bottom of each website page.

Select which cookies you accept

On this site, we always set cookies that are strictly necessary, meaning they are necessary for the site to function properly.

If you consent to it, we will also set other types of cookies. You can provide or withdraw your consent to the different types of cookies using the toggles below. You can change or withdraw your consent at any time, by clicking the link “Manage Cookies”, which is always available at the bottom of the site.

To learn more about what the different types of cookies do, how your data is used when they are set etc, see our Cookie Policy.

These cookies are necessary to make the site work properly, and are always set when you visit the site.

Vendors Teamtailor

These cookies collect information to help us understand how the site is being used.

Vendors Teamtailor
Sumsub career site

Privacy Notice for Candidates

Last updated: 01/07/2025

This Privacy Notice explains how Sumsub companies (collectively, “Sumsub”, the “Company”, or “we”) process personal data of candidates or other individuals who apply to an open position with us, whom we contact for recruitment purposes, or who undergo an interview or assessment with us (“Candidate(s)”).

As used in this Notice, “personal data” means any information that relates to, identifies, or reasonably could be used to identify an individual, directly or indirectly.

This Privacy Notice does NOT apply to: 

If you are offered and you accept a role at Sumsub, the Candidate personal data collected during the recruiting process will be governed by the Sumsub Staff Privacy Notice, a copy of which will be provided when you are onboarded.

1. General

    Depending on the Sumsub company you are in contact with or applying to, the data controller of your personal data is either of the following companies: 

    2. Collection of personal data

    The categories of personal data we may collect from includes:

    We collect most of the data from you directly. We may, however, also collect personal data about you from third parties, such as: 

    3. Purposes of processing

    When you apply or are contacted by us regarding open positions at Sumsub, we process your personal data for recruitment purposes, which may include: 

    4. Lawfulness of data processing

    We will process your personal data based on one or more of the following legal bases:

    Contract. We may process your personal data when we assess your suitability for the role and when we have the intention to enter into a contract with you.

    Legitimate interest. We may process your personal data to pursue our legitimate interests, such as:

    Legal obligation. We may be obliged to process some of your personal data to comply with applicable laws, e.g., to conduct checks for eligibility to work, as required under immigration laws.

    Consent. We may process certain personal data based on your consent, e.g., where you are passing Liveness checks and we collect your biometric data. 

    5. Disclosure of personal data

    Your personal data may be shared with our group companies where necessary to process your application. 

    We may also share your personal data with service providers (“Data Processors”) that help us with the recruitment process, such as, e.g., recruitment agencies (to manage and coordinate the hiring process), background check providers, IT and software vendors (e.g., applicant tracking systems).  

    We may also share your personal data for the following additional purposes where permitted or required by applicable law:

    As a  group of companies operating internationally, we may need to transfer your personal data outside of the country or region where you reside to process your application. This may involve transferring your personal data to countries which do not have equivalent data protection or privacy laws to those which apply in your own country. We may also need to transfer your personal data to third party service providers located in other countries. Regardless of where your personal data is transferred, we shall put in place appropriate safeguards to ensure that your personal data is treated securely and in accordance with applicable law. For individuals in the EEA, UK and Brazil, this usually means entering into Standard Contractual Clauses with recipients of your data who are located in countries which are not recognised as having adequate data protection laws. 

    To ensure transparency and compliance with applicable data protection legislation, Sumsub provides below the details of the countries outside the EU where personal data may be transferred and the corresponding safeguards applied.

    6. Personal data retention 

      Your personal data will be stored in accordance with applicable laws and kept as long as needed to carry out the purposes described in this privacy notice (or as otherwise required by applicable law). If you are successful with your application, your personal data will be kept in accordance with our Staff Privacy Notice. If you are unsuccessful with your application, your personal data will be kept for the duration of the application process, plus a reasonable period of time after confirmation that your application was unsuccessful to allow us to record the reasons for our decision in relation to your application (including so that we can exercise, establish, or defend any legal claims). 

      Where you provide consent for it, we also retain your personal data for up to 24 months to consider you for other suitable openings within Sumsub in the future. After this period, we will ask you to provide us with new consent if you want to stay in our pool of candidates.

      Notwithstanding anything to the contrary, the biometric data collected during the identity verification process is deleted immediately after the verification.

      7. Automated decision-making

        Our decisions about candidates are not determined by automated processes. 

        8. Your rights

        Subject to applicable laws in your location, you may have certain rights in relation to your personal data, including the right to:

        Please note that not all of these rights are absolute and we may not be required to comply with your request where exemptions apply under applicable data protection laws.

        You can exercise your privacy rights by contacting us at privacy@sumsub.com or by using the forms provided above.

        You also have a right to complain to your local data protection authority or other local regulatory body responsible for ensuring protection of your data privacy rights. We would appreciate it if, in such cases, you would contact Sumsub first to resolve the problem together.

        9. Changes

        Sumsub reserves the right to make amendments to this Notice at any time and for any reason. Any amendments will be effective immediately upon us posting the updated Privacy Notice on our website. Users of our website waive the right to receive specific notice about such amendments. You are invited to review this Privacy Notice at any time to stay informed about updates.

        10. Contact

        If you have any questions regarding this privacy notice, please email us at privacy@sumsub.com.

        Already working at Sumsub?

        Let’s recruit together and find your next colleague.

        @sumsub.com