Privacy Policy

Effective Date: 20 Feb 2025

1. Introduction

Welcome to CVCrafter (a product of pixknot) ("we", "us", or "our"). This Privacy Policy explains how we collect, use, store, and protect your personal information when you access and use our website at cvcrafter.pro (the "Website"). We are committed to ensuring your privacy and protecting your personal data in compliance with applicable laws in the United States, Canada, Australia, and Europe.

By using our Website and services, you consent to the practices described in this Privacy Policy.

2. Data Controller

Data Controller:
CVCrafter (a product of pixknot) is the data controller responsible for the personal data processed on our Website.
Primary Contact: [email protected]

Note: We do not provide a physical address at this time.

3. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Contractual Necessity: Processing is necessary to provide our services when you upload your resume and job description.
  • Consent: For non-essential cookies and analytics (e.g., via PostHog), we obtain your explicit consent as required under applicable laws.
  • Legitimate Interests: In certain cases, processing may be based on our legitimate interests to improve our services, provided such interests do not override your rights and freedoms.

4. Information We Collect

  • User-Provided Data:
    When you use our service, you voluntarily upload your resume and a job description. This information is used solely for generating tailored resumes, cover letters, and interview questions and answers using our language model (LLM).

  • Automatically Collected Data:
    We do not track users generally; however, we use an analytics service provided by PostHog. PostHog employs cookies and similar tracking technologies to:

    • Identify and track visitors.
    • Analyze usage of our Website.
    • Understand Website access preferences.

    Cookie Consent:
    Non-essential cookies (such as those used by PostHog) are placed only after obtaining your explicit consent as required by applicable EU laws and the ePrivacy Directive. You may adjust your browser settings or use our cookie banner to manage your preferences.

  • Payment Data:
    For processing payments, we use Stripe. Any payment information is handled directly by Stripe in accordance with their privacy policy and is not stored on our servers.

5. How We Use Your Information

  • Service Provision:
    Your uploaded resume and job description are processed to generate resumes, cover letters, and interview-related content. The generated files are temporarily stored on our cloud servers (hosted via a Virtual Private Server) for service delivery.

  • Automated Decision-Making:
    Our platform uses an automated language model (LLM) to generate content based on your inputs. This process is fully automated and is intended solely to assist you. It does not result in any legally binding decisions without human review. If you have questions about this process, please contact us.

  • Data Analysis:
    Data collected via PostHog analytics helps us understand usage patterns and improve our Website. This data is aggregated and does not include personally identifiable information beyond what is necessary for analytics.

  • Payment Processing:
    When you make a payment, your payment details are securely processed via Stripe.

6. Data Retention

  • User Files and Generated Content:
    All files you upload and the generated documents are stored on our cloud servers for 24 hours. After this period, your files and any cached data are permanently deleted.

  • Analytics Data:
    Data collected through PostHog is retained according to PostHog’s data retention policies and is used solely for analytical purposes. If other logs or metadata are retained for longer periods, they are handled in compliance with applicable legal requirements.

7. Data Breach Notification

In the event of a data breach affecting your personal data, we will notify you and the relevant supervisory authorities in accordance with applicable laws (e.g., GDPR, relevant U.S. state laws). Our procedures are designed to promptly address any breach and mitigate potential risks.

8. Security Measures

We implement industry-standard security measures to safeguard your personal information, including:

  • Encryption: Data is encrypted in transit and, where applicable, at rest.
  • Access Controls: Strict access controls and authentication procedures are in place.
  • Regular Audits: We periodically review our security practices to ensure the ongoing integrity of our systems.

Please note that while we strive to protect your data, no method of transmission or storage is 100% secure.

9. Third-Party Services and Links

We rely on the following third-party services to operate our Website:

  • Cloud Storage:
    We use a Virtual Private Server (VPS) provider to host and store user data temporarily.

  • Payment Processing:
    Stripe processes all payment transactions. Please refer to Stripe’s privacy policy for further details.

  • Analytics:
    PostHog provides analytics services via cookies and tracking technologies. For more information on how PostHog manages data, please refer to their privacy policy.

These third parties have access to personal data only to the extent necessary to perform their functions and are obligated to protect it.

10. International Data Transfers

Your personal data may be transferred to and processed in countries outside your jurisdiction. In such cases, we ensure that appropriate safeguards are in place to protect your data, in accordance with applicable laws such as the GDPR, PIPEDA, the Australian Privacy Principles, and relevant U.S. privacy laws.

11. Your Rights and Choices

Depending on your jurisdiction, you have certain rights regarding your personal data. These include, but are not limited to:

  • Access: The right to request copies of your personal data.
  • Rectification: The right to request corrections to inaccurate or incomplete data.
  • Erasure: The right to request deletion of your personal data (subject to our retention obligations).
  • Objection/Restriction: The right to object to or restrict the processing of your data.
  • Data Portability: The right to request that your data be transferred to another service provider.
  • Right to Lodge a Complaint: If you believe your data is being mishandled, you have the right to lodge a complaint with your local supervisory authority.

For questions or to exercise these rights, please contact us at [email protected].

12. Children's Privacy

We do not knowingly collect or process personal data from minors. Our service is intended for users who are not minors. If you believe that we have inadvertently collected data from a minor, please contact us immediately.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated effective date. Your continued use of the Website after any modifications indicates your acceptance of the revised terms.

14. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

Email: [email protected]