T&T Compliance Shield AI Hiring Review
Privacy and data handling

We keep the first pilots controlled.

This policy explains what T&T Compliance Shield collects, how AegisReview handles review information, and what customers should not submit unless a separate written agreement is in place.

Effective date: May 8, 2026

Company: T&T Compliance Shield LLC

Contact: tony@ttcomplianceshield.com

Plain-English summary: AegisReview is currently a guided review workflow. We collect the information needed to answer inquiries, run a controlled Snapshot, and prepare review-ready materials. We do not sell customer data. Do not send sensitive applicant, employee, medical, payroll, Social Security, bank, or government ID information unless we have a separate written agreement covering that data.

1. Information We Collect

We collect information you provide directly, information generated while using the website or AegisReview workflow, and limited technical information needed to operate the site.

IntakeName, work email, phone if provided, company, website, role, Illinois hiring exposure, urgency, known HR or hiring tools, and your message.
Review filesCompany context, public scan findings, known tools, documentation gaps, notes you approve for review, Snapshot records, report drafts, notice drafts, and workflow status.
Portal dataFor early pilots, the client portal may use browser-local storage and workspace-scoped backend records where enabled. Portal access is still a guided pilot workflow, not a full self-serve production login.
TechnicalIP address, browser/device information, page visits, timestamps, form submission metadata, and basic security or diagnostic logs.

2. Information Customers Should Not Submit

Important: Unless we separately agree in writing, do not submit applicant resumes, employee files, Social Security numbers, driver's license numbers, medical information, payroll records, bank/payment data, background-check reports, immigration documents, protected-class demographic data, passwords, API keys, or confidential legal communications.

AegisReview is designed to start with company-level information, tool names, workflow context, public evidence, and customer-approved notes. If a review later requires sensitive data, we will pause and define the scope, storage, access, retention, and review responsibilities before accepting it.

3. How We Use Information

  • Respond to inquiries, walkthrough requests, partner conversations, and Snapshot requests.
  • Run public signal checks and organize customer-approved hiring-tool information.
  • Create review-ready materials such as Snapshots, reports, notice drafts, action lists, and handoff notes.
  • Maintain an audit trail of workflow steps, approvals, drafts, and review status.
  • Improve the product, fix bugs, protect the service, and support customer-requested follow-up.
  • Send service-related communications and limited marketing communications that you can opt out of.

4. Storage, Portal Access, And Login Status

AegisReview is currently operated as a guided pilot workflow. Early customers should expect manual onboarding, human review, and controlled delivery rather than a fully self-serve production portal.

  • The public website can collect form submissions through the site host and may save local preview data in the browser during demos.
  • Workspace-backed Snapshot and activity records may be stored in our configured backend when the workspace key is enabled.
  • The current workspace key is a pilot access control, not a replacement for production customer login.
  • Before opening real customer portal access broadly, we plan to use proper user authentication, workspace permissions, and server-side access checks.

5. How We Share Information

We do not sell, rent, or trade personal information. We may share information only in limited cases:

  • With service providers that help operate hosting, forms, email, scheduling, storage, payments, support, or analytics.
  • With attorneys, HR consultants, or advisors only when you request or approve that involvement.
  • If required by law, subpoena, court order, or valid government request.
  • As part of a business transfer, such as merger, acquisition, financing, or sale of assets, with appropriate safeguards.

6. Retention And Deletion

We retain information only as long as reasonably needed for the requested service, business records, customer support, dispute prevention, legal obligations, or security. For paid review files, retention should be confirmed in the service agreement, invoice terms, or written customer instructions.

You may request deletion by emailing tony@ttcomplianceshield.com with the subject line "Privacy Request." We may need to retain limited records where required for legal, payment, security, or business-record reasons.

7. Security

We use reasonable administrative, technical, and organizational safeguards for the stage of the product, including scoped workspace records, review boundaries, audit events, and limited access practices. No internet service or electronic storage method is completely secure, so we also limit what we ask customers to submit during early pilots.

8. Your Choices And Requests

  • You can ask what information we hold about you or your company contact record.
  • You can request correction or deletion of personal information.
  • You can opt out of marketing emails by replying "unsubscribe" or emailing us.
  • You can ask us not to use your company name publicly unless you separately approve a testimonial or case study.

9. Cookies And Analytics

Our website may use cookies, local storage, analytics, and similar technologies to operate forms, remember demo/workspace state, understand site usage, and improve the product. You can control cookies through your browser settings, but some site functions may not work as expected if disabled.

10. Third-Party Links

Our website may link to third-party websites, resources, or service providers. Their privacy practices are governed by their own policies, not this one.

11. Children's Privacy

Our services are intended for business professionals and are not directed to children under 18. We do not knowingly collect personal information from children.

12. Changes To This Policy

We may update this policy as the product, law, vendors, or customer workflows change. The updated effective date will appear at the top of this page.

13. Contact

For privacy requests or questions, email tony@ttcomplianceshield.com.

T&T Compliance Shield LLC
Website: ttcomplianceshield.com