Skip to content
PromptCV.app
Get started

Privacy Policy

Last updated: May 24, 2026

Heads up: This document is a v1 draft for our public launch. It is not legal advice. We will engage a lawyer to harden it before scaling.

1. Data we collect

When you use PromptCV.app we collect:

  • Account data: your email and (optionally) your name and profile photo from Google or LinkedIn if you sign in with those providers.
  • Resume content: everything you enter into the editor or upload to import (PDF/DOCX/LinkedIn export). This is stored in our database so you can return to edit it.
  • Payments: when you buy a PDF download, bKash processes your payment and sends us a session id, the amount, and the payment status. We never see your card or mobile banking credentials.
  • Usage: we record which features you use (e.g. an AI rewrite call, a paid download) so we can keep the product working. We hash any IP addresses we log.

2. How we use it

  • To provide and improve the service (editing, AI assistance, PDF rendering).
  • To process your payments and grant download access.
  • To detect abuse and enforce rate limits.
  • To send you transactional emails (sign-in links, receipts). We do not send marketing emails in v1.

3. Data sharing

We share your data only with the processors required to run the service, under data processing agreements:

  • Supabase — hosts our database, authentication, and storage.
  • Google (Gemini API) — when you use an AI feature, the text you ask the AI to work on is sent to Google's Gemini API. Per Google's free-tier policy this content may be used to improve their models.
  • bKash — processes payments. Your payment credentials go directly to bKash; we only receive payment metadata.
  • Fly.io and Vercel — host our backend and frontend.
  • Sentry — receives error reports (no resume content; only ids and request metadata).

We do not sell your data and we do not share it with advertisers.

4. Retention

We keep your account data for as long as you keep the account. If you delete your account, we delete your resumes, versions, shares, downloads, ATS scans, AI usage counters, and uploaded source files immediately. Payment records (orders) are retained without your user id for accounting and audit purposes.

5. Your rights

You can, at any time and at no cost:

  • Access your data — download a JSON export from Settings.
  • Delete your account — from Settings → Delete account.
  • Correct your data — edit your profile and resumes anytime.
  • Object or restrict processing — email us at the address below.

6. Contact

Email privacy@promptcv.app.