Privacy Policy

JobAppKit ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered job analysis platform and related services.

By using our Service, you consent to the collection and use of your information in accordance with this Privacy Policy.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

• Email address for authentication and communication
• Profile information and preferences you choose to provide
• Authentication data including password (encrypted) and login sessions
• Subscription and billing information when you upgrade your account

1.2 Job Analysis Data

During our service delivery, we process:

• Job post images and text content you upload for analysis
• AI analysis results, risk assessments, and decision recommendations
• Generated proposals, custom questions, and exported content
• Your decisions and feedback on analysis results
• Usage patterns including feature utilization and analysis frequency

1.3 Technical Information

We automatically collect certain technical data:

• IP addresses and general location information
• Device information including browser type and operating system
• Usage analytics including page views and feature interactions
• Performance metrics and error logs for service improvement
• Cookies and similar tracking technologies (see Section 6)

2. How We Use Your Information

2.1 Service Delivery

We use your information to provide our core services:

• AI-powered job post analysis using OpenAI's API services
• User account management and secure authentication
• Subscription billing and usage tracking for tiered service levels
• Generating proposals, questions, and analysis exports
• Providing personalized recommendations and decision guidance

2.2 Service Improvement

We analyze usage data to enhance our platform:

• Analytics to improve AI analysis accuracy and relevance
• Feature usage optimization and user experience enhancements
• Performance monitoring and error resolution
• Development of new features based on user needs

2.3 Communication

We may use your contact information for:

• Service updates and important platform notifications
• Billing communications and subscription management
• Customer support responses and technical assistance
• Security alerts and account-related communications

3. Information Sharing and Third Parties

3.1 AI Processing Partners

OpenAI Integration:

• Job post content is sent to OpenAI's API for AI analysis processing
• We have data processing agreements ensuring security and privacy compliance
• OpenAI does not permanently store your job post content
• Analysis requests are processed securely and deleted from temporary storage

3.2 Payment Processing

Stripe Integration:

• Billing and subscription management through Stripe's secure platform
• PCI compliance standards for secure payment card handling
• Data sharing limited to payment processing, billing, and fraud prevention
• Customer payment information is stored securely by Stripe, not on our servers

3.3 Service Providers

We work with trusted third-party providers for:

• Cloud hosting and infrastructure services (secure data hosting)
• Analytics and monitoring services for platform performance
• Email delivery services for account and service communications
• Customer support tools to provide better assistance

3.4 Legal Requirements

We may disclose information when required by law, to protect our rights, or in response to legal processes such as court orders or government requests.

4. Data Security and Protection

4.1 Security Measures

We implement comprehensive security practices:

• Encryption in transit (HTTPS/TLS) and at rest for sensitive data
• Multi-factor authentication and secure access controls
• Regular security audits and vulnerability assessments
• Employee training on data protection and privacy best practices
• Incident response procedures for potential security breaches

4.2 Data Minimization

We follow data minimization principles:

• Collect only information necessary for service provision
• Automatic deletion of temporary analysis data after processing
• Regular purging of unnecessary logs and temporary files
• User control over data retention through account settings

5. Your Privacy Rights

5.1 Access and Control

You have the right to:

• Access and review your personal data stored in your account
• Update and correct your account information and preferences
• Export your data including analysis history and generated content
• Control communication preferences and notification settings

5.2 Deletion Rights

You can request:

• Complete account deletion and data removal
• Deletion of specific analysis results or uploaded content
• Right to be forgotten compliance where legally applicable

5.3 Data Portability

You can export your data in machine-readable formats including analysis results, generated proposals, and account information.

6. Cookies and Tracking

6.1 Essential Cookies

We use necessary cookies for:

• Authentication and secure session management
• User preferences and platform settings
• Security features and fraud prevention
• Core functionality like form submissions and navigation

6.2 Analytics Cookies

With your consent, we use analytics for:

• Usage statistics and feature popularity analysis
• Performance monitoring and error tracking
• User experience optimization and A/B testing

6.3 Cookie Management

You can control cookies through your browser settings. Note that disabling essential cookies may limit platform functionality.

7. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including:

• Processing data in regions with adequacy decisions where possible
• Standard contractual clauses for international data transfers
• Ensuring third-party processors meet equivalent privacy standards
• Regular compliance monitoring and auditing

8. Children's Privacy

Our Service is not intended for individuals under the age of 16. We do not knowingly collect personal information from children under 16. If you become aware that a child has provided us with personal information, please contact us immediately.

If we discover we have collected information from a child under 16, we will promptly delete such information from our systems.

9. Regulatory Compliance

9.1 GDPR Compliance (EU Users)

For European Union users, we provide:

• Legal basis for processing (service delivery, legitimate interests, consent)
• Full data subject rights including access, rectification, erasure, and portability
• Data Protection Officer contact for privacy inquiries
• Right to lodge complaints with supervisory authorities

9.2 CCPA Compliance (California Users)

For California residents, we provide:

• Right to know what personal information we collect and how it's used
• Right to delete personal information (subject to legal exceptions)
• Right to opt-out of sale of personal information (we do not sell data)
• Non-discrimination policy for exercising privacy rights

10. Privacy Contact Information

For privacy-related questions, concerns, or to exercise your rights, please contact us:

10.1 Exercising Your Rights

To exercise your privacy rights, please email us with "Privacy Request" in the subject line. Include your account email and specify the action you'd like to take. We will respond within 30 days.

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. When we make significant changes, we will:

• Notify you via email at least 30 days before changes take effect
• Display prominent notices on our platform
• Update the "Last updated" date at the top of this policy
• Maintain previous versions for reference when requested

Your continued use of our Service after changes become effective constitutes acceptance of the updated Privacy Policy.