Resumia.aiBETA

Privacy Policy

Last updated: January 8, 2026

Your privacy is important to us. This policy explains how we collect, use, and protect your data when you use Resumia.ai.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

  • Email address
  • Full name
  • Password (encrypted)
  • Account creation date

1.2 Resume and Job Description Data

To provide our optimization service, we collect and process:

  • Resume text and content you upload
  • Job descriptions you provide
  • Optimization history and results
  • Feedback and clarifications you provide

1.3 Payment Information

When you purchase credits, we collect payment information through Stripe, our secure payment processor. We do not store your credit card details on our servers. Stripe handles all payment data in compliance with PCI-DSS standards.

1.4 Usage Data

We automatically collect:

  • IP address
  • Browser type and version
  • Pages visited and features used
  • Campaign tracking data (if you arrive via a marketing link)

2. How We Use Your Data

2.1 Service Delivery

We use your resume and job description data to:

  • Generate ATS compatibility scores
  • Provide match analysis between your resume and job descriptions
  • Create optimized versions of your resume
  • Offer personalized recommendations

2.2 AI Processing

Important: Your resume and job description data is sent to third-party AI providers for processing:

  • OpenAI (GPT-4) - For resume analysis and optimization
  • Google Gemini - Alternative AI processing option

🔒 AI Data Usage Transparency

OpenAI API: According to OpenAI's policy (as of March 1, 2023), data submitted via their API is NOT used to train or improve their models. Your data is retained for 30 days for abuse monitoring only, then deleted. We use OpenAI's paid API service.

Google Gemini API: For paid API services, Google does NOT use your prompts or responses to improve its general products or train AI models. Data is retained for 55 days for abuse monitoring only.

2.3 Analytics and Improvement

We use PostHog for product analytics to understand how users interact with our service and improve the user experience. This includes tracking page views, feature usage, and campaign conversions.

3. Data Storage and Security

3.1 Where We Store Your Data

Your data is stored securely using:

  • Supabase - Database and authentication (PostgreSQL with encryption at rest)
  • AWS S3 - File storage for uploaded resumes (encrypted)

3.2 Security Measures

We implement industry-standard security practices:

  • TLS/SSL encryption for data in transit
  • AES-256 encryption for data at rest
  • Secure password hashing (bcrypt)
  • Regular security audits
  • Role-based access control

3.3 Data Retention

We retain your data as follows:

  • Account data: Until you delete your account
  • Resume/JD data: Until you delete them or your account
  • Payment records: 7 years (for tax and legal compliance)
  • Analytics data: Aggregated and anonymized indefinitely

4. Third-Party Services

We use the following trusted third-party services:

ServicePurposeData Shared
OpenAIAI processingResume text, job descriptions
Google GeminiAI processing (alternative)Resume text, job descriptions
StripePayment processingEmail, payment details
SupabaseDatabase & authenticationAll account and content data
PostHogProduct analyticsUsage patterns, events

Important: We do NOT sell your personal data to advertisers or third parties for marketing purposes.

5. Your Rights

You have the following rights regarding your data:

5.1 Access and Portability

  • View all your data from your dashboard
  • Download your resumes and optimization history
  • Request a complete data export

5.2 Deletion

  • Delete individual resumes or job descriptions
  • Delete your entire account and all associated data
  • Request manual data deletion by contacting support

5.3 Correction

  • Update your profile information at any time
  • Correct any inaccurate data

5.4 Opt-Out

  • Unsubscribe from marketing emails
  • Disable analytics tracking (contact support)

6. Cookies and Tracking

We use cookies and similar technologies for:

  • Essential cookies: Authentication and session management
  • Analytics cookies: Understanding user behavior (PostHog)
  • Campaign tracking: Attribution for marketing campaigns

You can control cookies through your browser settings, but disabling essential cookies may affect functionality.

7. Children's Privacy

Resumia.ai is not intended for users under 16 years of age. We do not knowingly collect data from children. If you believe we have collected data from a child, please contact us immediately.

8. International Data Transfers

Your data may be transferred to and processed in countries outside your residence, including the United States. We ensure appropriate safeguards are in place through:

  • Standard Contractual Clauses (SCCs)
  • GDPR-compliant data processing agreements
  • Privacy Shield frameworks where applicable

9. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of significant changes via:

  • Email notification
  • In-app notification
  • Updated "Last modified" date at the top of this page

10. Contact Us

If you have questions about this privacy policy or your data, please contact us:

  • Email: privacy@resumia.ai
  • Feedback Form: Available in your dashboard

✅ Our Commitment to Transparency

We believe in complete transparency about how your data is used. Your resume data is processed by AI providers who have committed NOT to use it for training their models. We use paid API services specifically to ensure your data remains private and is not used to improve third-party AI systems.