applyzero logo
applyzero

Your AI agent interview partner

Sign inLand your dream job
Privacy policy

Your privacy, our commitment

This policy explains how applyzero handles personal data when you use our AI interview preparation tools. Our goal is to keep the experience transparent, secure, and under your control.

Last updated: January 20, 2025

1. Data Controller

  • -The data controller responsible for your personal data is applyzero. You can contact us at privacy@applyzero.ai.
  • -For the purposes of data protection law, we are the data controller when processing your personal information.

2. Information we collect

  • -Personal Information: Name, email address, and authentication data when you create an account.
  • -Content Data: CV documents, job descriptions, and any additional information you provide for analysis.
  • -Usage Data: Information about how you interact with our service, including features used and timestamps.
  • -Payment Information: Processed securely by Stripe (we do not store full payment card details).
  • -Cookies: See our Cookie Policy for details on how we use cookies and similar technologies.

3. Legal basis for processing (GDPR)

  • -Contract Performance: Processing necessary to provide our service under our Terms of Service.
  • -Legitimate Interests: Improving our service, preventing fraud, and ensuring security.
  • -Consent: For optional communications and non-essential cookies (you can withdraw consent at any time).
  • -Legal Obligation: When required by law to disclose information.

4. How we use your information

  • -Provide Services: Enable CV analysis, job matching, and report generation.
  • -Account Management: Create and manage your account, process payments, and provide customer support.
  • -Communications: Send transactional emails, service updates, and respond to your inquiries.
  • -Improvement: Analyze aggregated, de-identified data to improve our AI models and service quality.
  • -Legal Compliance: Comply with legal obligations and protect our rights.

5. Data retention

  • -Account Data: Retained while your account is active and for a reasonable period after account closure.
  • -CV Files: Raw files removed after parsing unless explicitly saved to your account.
  • -Generated Content: Briefings and analysis retained while your account is active.
  • -Payment Records: Retained for 7 years as required by financial regulations.
  • -You can request deletion of your data at any time by contacting privacy@applyzero.ai.

6. Sharing and disclosure

  • -We do not sell your personal data to third parties.
  • -Service Providers: Supabase (authentication/database), Stripe (payments), OpenAI/Anthropic (AI processing) - all bound by strict data processing agreements.
  • -Legal Requirements: We may disclose information if required by law, court order, or to protect rights and safety.
  • -Business Transfers: In the event of a merger or acquisition, your data may be transferred (you will be notified).

7. International data transfers

  • -Your data may be processed in the United States and other countries where our service providers operate.
  • -We ensure adequate safeguards are in place through Standard Contractual Clauses (SCCs) approved by the European Commission.
  • -Data transferred outside the EEA is protected by appropriate safeguards under GDPR Article 46.

8. Security

  • -Encryption: All data is encrypted in transit (TLS/SSL) and at rest.
  • -Access Controls: Restricted access to production systems with multi-factor authentication.
  • -Regular Audits: We conduct security reviews and vulnerability assessments.
  • -Incident Response: We have procedures in place to detect and respond to security incidents.

9. Your rights under GDPR

  • -Right of Access: Request a copy of your personal data we hold.
  • -Right to Rectification: Request correction of inaccurate or incomplete data.
  • -Right to Erasure: Request deletion of your personal data (right to be forgotten).
  • -Right to Restriction: Request restriction of processing in certain circumstances.
  • -Right to Data Portability: Receive your data in a structured, commonly used format.
  • -Right to Object: Object to processing based on legitimate interests.
  • -Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent.
  • -Right to Lodge a Complaint: File a complaint with your local data protection authority (ICO in the UK).
  • -To exercise any of these rights, contact privacy@applyzero.ai. We will respond within 30 days.

10. Children's privacy

  • -Our service is not intended for individuals under 18 years of age.
  • -We do not knowingly collect personal data from children.
  • -If we become aware of data collected from a child, we will delete it promptly.

11. Changes to this policy

  • -We may update this Privacy Policy from time to time.
  • -We will notify you of material changes by email or prominent notice on our website.
  • -Continued use after changes constitutes acceptance of the updated policy.

12. Contact us

  • -Email: privacy@applyzero.ai
  • -Data Protection Officer: dpo@applyzero.ai
  • -We aim to respond to all inquiries within 5 business days.
  • -For complaints about data processing, you can also contact the Information Commissioner's Office (ICO) in the UK.