Privacy Policy

Welcome to Spotlight Assessments. We are committed to protecting your personal information and your right to privacy.

1. What information do we collect?

Personal information you disclose to us: We collect personal information that you voluntarily provide to us when you register on the Services, express an interest in obtaining information about us or our products and Services, or otherwise when you contact us.

• Credentials & Identity: We collect names, email addresses, and authentication data (such as Google OAuth tokens) to manage your account securely.
• Assessment Data: We collect the responses you and your invited respondents submit through our 360-degree assessment surveys.

2. How do we use your information?

We process your information for purposes based on legitimate business interests, the fulfillment of our contract with you, compliance with our legal obligations, and/or your consent. Specifically, we use your data to:

• Facilitate account creation and logon processes securely via Firebase Authentication.
• Process, synthesize, and generate your personal 360-degree development reports.
• Send administrative information to you, such as product updates or security alerts.

3. Will your information be shared with anyone?

We only share information with your consent, to comply with laws, to provide you with services, to protect your rights, or to fulfill business obligations. We do not sell your personal data or assessment results to third-party advertisers or data brokers.

Service Providers & AI Processing: We utilize third-party APIs, specifically Google Cloud Services and the Gemini AI API, to host our database and synthesize your assessment reports. Assessment data is transmitted securely to these APIs exclusively for the purpose of generating your report and is not used to train global AI models.

4. How do we keep your information safe?

We have implemented appropriate technical and organizational security measures designed to protect the security of any personal information we process, including strict Firestore security rules to prevent unauthorized access. However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure.

5. How long do we keep your information?

We keep your information for as long as necessary to fulfill the purposes outlined in this privacy notice unless otherwise required by law. You may request the deletion of your account and associated data at any time.