Privacy Policy

1. Introduction

AskCV ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered resume platform and related services (collectively, the "Service").

By using AskCV, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Information You Provide

• Account Information: Email address, name, and password when you create an account
• Profile Information: Resume content including work experience, education, skills, projects, and certifications
• Knowledge Base Content: Documents, files, and information you upload to train your AI assistant
• Payment Information: Billing details processed securely through Stripe (we do not store full payment card numbers)
• Communications: Messages you send through our support channels

2.2 Information Collected Automatically

• Usage Data: How you interact with the Service, including pages visited and features used
• Device Information: Browser type, operating system, and device identifiers
• Log Data: IP addresses, access times, and referring URLs
• Analytics: Aggregated statistics about service performance and usage patterns

2.3 Information from Third Parties

• OAuth Providers: When you sign in with Google or GitHub, we receive your name, email, and profile picture
• Google Drive: If you connect Google Drive, we access files you explicitly select for import (read-only access)

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve the Service
• Create and manage your account
• Generate AI-powered responses about your resume and experience
• Process payments and manage subscriptions
• Send transactional emails (account verification, password resets, usage alerts)
• Respond to your inquiries and provide customer support
• Monitor and analyze usage patterns to improve user experience
• Detect, prevent, and address technical issues and security threats
• Comply with legal obligations

4. AI and Data Processing

• Vector Embeddings: Your content is converted into mathematical representations (embeddings) for semantic search
• AI Providers: We use third-party AI providers (OpenAI, Google, Anthropic) to generate responses
• Data Retention: Embeddings and AI conversation logs are stored to provide the Service
• No Training: Your personal data is not used to train AI models

5. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

• Service Providers: Third parties that help us operate (hosting, payment processing, analytics)
• AI Providers: Your content is sent to AI providers to generate responses
• Public Profile: Information you choose to display on your public resume page is visible to anyone with the link
• Legal Requirements: When required by law or to protect our rights
• Business Transfers: In connection with a merger, acquisition, or sale of assets

6. Third-Party Services

Our Service integrates with the following third-party services:

• Neon (Database): Secure cloud database hosting
• Vercel (Hosting): Application hosting and deployment
• Stripe (Payments): Secure payment processing
• Google OAuth: Sign-in authentication
• GitHub OAuth: Sign-in authentication
• Google Drive API: Document import functionality
• OpenAI, Google AI, Anthropic: AI model providers

Each third-party service has its own privacy policy governing their use of your data.

7. Data Security

We implement appropriate technical and organizational security measures to protect your personal information, including:

• Encryption of data in transit (TLS/HTTPS) and at rest (AES-256)
• Row-level security (RLS) for database isolation
• Secure password hashing (bcrypt)
• Regular security audits and monitoring
• Access controls and authentication requirements

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee its absolute security.

8. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with the Service. We may retain certain information after account deletion for:

• Legal compliance and audit requirements
• Dispute resolution
• Fraud prevention
• Enforcement of our terms

You may request deletion of your account and associated data at any time by contacting us at privacy@askcv.ai.

9. Your Rights

Depending on your location, you may have the following rights regarding your personal information:

• Access: Request a copy of your personal data
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your personal data
• Portability: Request transfer of your data to another service
• Objection: Object to certain processing of your data
• Restriction: Request restriction of processing

To exercise these rights, please contact us at privacy@askcv.ai. We will respond to your request within 30 days.

10. Children's Privacy

Our Service is not intended for individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. When we transfer your information internationally, we take appropriate safeguards to ensure your information remains protected.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically for any changes.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at: