• Information and Communications Technology
  • Information Services
  • Content Delivery Networks


UK Extension to the EU-U.S. Data Privacy Framework Framework: Active

Original Certification Date: 9/7/2023
Next Certification Due Date: 9/6/2024
Data Collected: NON-HR

EU-U.S. Data Privacy Framework Framework: Active

Original Certification Date: 8/28/2020
Next Certification Due Date: 9/6/2024
Data Collected: NON-HR

Swiss-U.S. Data Privacy Framework Framework: Active

Original Certification Date: 9/9/2021
Next Certification Due Date: 9/6/2024
Data Collected: NON-HR

Purpose of Data Collection

Leoforce is in the business of providing candidate information services to our clients and their end users. Our client engagements are formalized through a Master Services Agreement (MSA) followed by Statements of Work (SOWs) for each project we work on under the MSA. In all cases, our work is driven by the scope defined by the client and tailored to specific recruitment needs of each client. The client’s requirements define the data that is captured and processed by the bespoke software we deliver under these contracts. In most cases we are the data processors. However, we also in some instances act as independent data controller. We process the below mentioned personal data. The various category of personal data include: • First name, last name/surname, middle name/initial, maiden name • Email address • Home address (street, zip, postal code, city) • Phone number • Photo • Gender • Social media profile IDs/links We process these personal data, acting as the data processor and/or data controllers, to fulfil our responsibilities under the client contract. The data is processed by Leoforce solely on documented instructions of the relevant client under the client contract. Many of the applications we work on are catering to the essential business operations of our clients. So we will process information about our clients services and products, prices, promotions, orders, payments and track their end customer accounts, generate reports and analytics driven insights based on data processed by the applications. We persist the data on various relational and NoSQL databases and archive old data based on client’s business rules. Data is encrypted for security purposes, based on client’s business needs. Further all applications use stringent role-based access mechanisms to limit data access. Applications are hosted on servers that are in the geography of the client and are protected by firewalls and other monitoring software that help prevent and detect and attempts to hack into the servers. Passwords cannot be seen even by the database Admins – they can only be reset. To summarize, we build and operate systems that process candidate data. Our role is to be their technology partner to leverage candidate information to fulfill their business efficiently and effectively, at the required scale.

Privacy Policy

Non-HR Data


Data Privacy Policy

Effective Date: 8/1/2019

Verification Method


Dispute Resolution

Questions or Complaints?

If you have a question or complaint regarding the covered data, please contact Leoforce LLC at:

Kumar Guddu
Chief Architect
Leoforce LLC
500 W Peace St
Raleigh, North Carolina 27603-1102

Privacy Shield organizations must respond within 45 days of receiving a complaint.

If you have not received a timely or satisfactory response from Leoforce LLC to your question or complaint, please contact the independent recourse mechanism listed below


Appropriate statutory body with jurisdiction to investigate any claims against Leoforce LLC regarding possible unfair or deceptive practices and violations of laws or regulations covering privacy Federal Trade Commission