Privacy Policy

Last updated: 2026-05-20

In case of conflict, the English version prevails.

1. What we collect

• Email address — via Google OAuth (Supabase Auth). We do not access any other Google scope.
• Resume text — as you paste it into the extension.
• Search preferences — region, keywords, notification threshold, experience summary, title blocklist.
• Job matching results — score, per-component breakdown, matched / missing skills, decision, reasoning. Retained for audit.
• Email send log — what we sent, when, and whether delivery succeeded.
• Billing identifiers — Stripe Customer ID and Subscription ID. We do not store full card numbers.

We do NOT collect: browsing history, IP geolocation, contacts, screen captures, or any data from sites other than the public job-search endpoints we explicitly query.

2. Where data lives

• Supabase — Postgres, US-West region — authentication, resumes, profiles, applications, scan history, email logs.
• Cloudflare Workers — request handling and the 5-minute scan cron. No persistent storage.
• DeepSeek (deepseek-chat) — receives your resume text and the job description per matching request, processed on infrastructure based in China. DeepSeek does not retain inputs for training per their API terms.
• Brevo — email delivery (your email address is used as recipient; no resume content stored at Brevo).
• Stripe — billing (card vaulting and subscription management). PCI scope handled by Stripe.

3. Third parties

We share data only with the services listed above, only as needed to deliver the product. We do not sell or share data for advertising.

4. Job listing sources

We aggregate publicly accessible job listings from LinkedIn's public unauthenticated search endpoint and Canada's Job Bank. We do not require user authentication to query these sources, and we do not extract any private or login-walled content. This use is consistent with the hiQ Labs v. LinkedIn precedent (US 9th Circuit, 2019).

5. Your rights (GDPR, CASL, CCPA)

• Access — see all your data via the extension popup.
• Deletion — "Delete account" in the extension removes everything (cascade).
• Unsubscribe — every match email includes an unsubscribe link plus an RFC 2369 List-Unsubscribe header (one-click).
• Portability — email [email protected] for a data export.

6. Retention

• User account, resume, profile, applications: until you delete your account.
• Scan run logs: 30 days.
• LLM usage logs (cost accounting): 90 days.
• Email send logs: 60 days.

7. Security

HTTPS-only. JWT-based session tokens. Supabase Row Level Security enabled. No secrets in client-side code. Stripe handles PCI scope for billing.

8. Children

Service not directed at users under 16.

9. Contact

[email protected]