Privacy Policy

Last updated: February 23, 2025

1. Data We Collect

Account Data: Email address, full name, company name, and payment information (processed by Stripe).

Uploaded Documents: CV/resume files you upload for parsing. These are temporarily stored during processing and automatically deleted within 1 hour.

Parsed Results: Structured data extracted from your documents, stored in your account until you delete it.

Usage Data: API request logs, timestamps, and aggregate statistics.

2. How We Use Your Data

We use your data to: (a) provide the parsing service; (b) process billing; (c) improve extraction accuracy (anonymized, aggregate data only); (d) communicate service updates.

3. Data Storage & Security

Data is stored on encrypted AWS infrastructure in the af-south-1 (Cape Town) region. All API communication is encrypted via TLS 1.3. API keys are stored as SHA-256 hashes.

4. GDPR Compliance

For EU users, we comply with GDPR. You have the right to: (a) access your data; (b) correct inaccurate data; (c) delete your data (right to be forgotten); (d) export your data; (e) restrict processing. Use the DELETE endpoint or contact us to exercise these rights.

5. Data Retention

Uploaded files: Deleted within 1 hour of processing. Parsed results: Stored until you delete them. Account data: Retained for 30 days after account deletion. Billing records: Retained for 7 years per legal requirements.

6. Third-Party Services

We use: Stripe (payments), AWS (infrastructure), Sentry (error monitoring — no PII transmitted). We do not sell your data to any third party.

7. Cookies

We use essential cookies for authentication (JWT tokens stored in localStorage). We do not use tracking or advertising cookies.

8. Contact

Data Protection Officer: privacy@cvparse.io