FeaturesHow It WorksPricingFAQContact
Log inSign up
Security & trust

Your data, safe with us.

We're a career tool, so we take the things you trust us with — resumes, emails, passwords — seriously. Here's exactly how we protect your data.

Encrypted end-to-end

TLS 1.3 in transit, AES-256 at rest. Your resume data never travels in the clear.

Bcrypt-hashed passwords

Passwords are hashed with bcrypt — we never store plaintext. If our database leaked, your credentials would still be safe.

Secure session cookies

HttpOnly, Secure, SameSite cookies with CSRF protection. Your session can't be stolen by malicious scripts.

Rate limiting & abuse protection

Brute-force attempts on login, password reset, and APIs are blocked automatically. OTPs expire in 15 minutes.

Right to delete — always

Delete your account and data anytime from Settings. We permanently erase it within 30 days. No dark patterns, no gatekeeping.

US-based servers

Your data is stored on servers located in the United States. No cross-border replication, no shadow backups in other jurisdictions.

More detail on how we handle your data

Privacy Policy

What we collect, why, and who we share it with.

Terms of Service

Your rights and ours when using the service.

Cookie Policy

Essential cookies only — no ad tracking.

Disclaimer

AI limitations — we're an aid, not a guarantee.

Breach notification

If we discover a data incident that affects you, we'll notify you within 72 hours as required by GDPR and our own policy. For vulnerability reports, email [email protected].

Questions about security or privacy?