Privacy Policy

Last updated: March 02, 2026

At RezumFit, we take your privacy seriously. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our Service.

1. Information We Collect

1.1 Information You Provide

  • Account information: name, email address, password, phone number, job title
  • Profile information: avatar, bio, LinkedIn URL, portfolio URL
  • Resume data: work experience, education, skills, certifications, and other content you upload or enter
  • Cover letter data: company names, job descriptions, target roles, and generated content
  • Payment information: processed securely by Paystack — we do not store your full credit card details
  • Preferences: language, timezone, currency, country, notification settings

1.2 Information Collected Automatically

  • Usage data: pages visited, features used, timestamps, and interaction patterns
  • Device information: browser type, operating system, screen resolution
  • Log data: IP address, access times, referring URLs
  • Cookies: session cookies for authentication and preferences

1.3 Information from Third Parties

  • OAuth providers: if you sign in with Google, we receive your name, email, and profile picture
  • Payment processor: Paystack provides us with transaction confirmations and subscription status

2. How We Use Your Information

We use your information to:

  • Provide, maintain, and improve the Service
  • Process your resumes and generate AI-optimized content
  • Process payments and manage subscriptions
  • Send transactional emails (account confirmations, password resets, receipts)
  • Send marketing communications (only with your consent, and you can opt out at any time)
  • Analyze usage patterns to improve features and user experience
  • Detect and prevent fraud, abuse, or security incidents
  • Comply with legal obligations

3. AI Processing

To provide resume optimization and cover letter generation, your content is processed by third-party AI providers (such as OpenAI, Anthropic, and Google). When we send data to these providers:

  • Only the content necessary for processing is shared (resume text, job descriptions)
  • Your personal account details (email, password, payment info) are never sent to AI providers
  • AI providers process data according to their own privacy policies and data processing agreements
  • We do not use your content to train AI models

4. Data Sharing

We do not sell your personal information. We share data only in the following circumstances:

  • Service providers: Paystack (payments), AI providers (content processing), cloud hosting (data storage), email delivery services
  • Legal requirements: when required by law, regulation, legal process, or governmental request
  • Business transfers: in connection with a merger, acquisition, or sale of assets, with prior notice to you
  • With your consent: when you explicitly authorize sharing

5. Data Storage and Security

We implement industry-standard security measures to protect your data:

  • All data is transmitted over encrypted connections (TLS/SSL)
  • Passwords are hashed using secure algorithms (bcrypt)
  • Sensitive credentials are encrypted at rest
  • Access to production systems is restricted and monitored
  • Regular security reviews and updates are performed

Your data is stored on secure servers. While we strive to protect your information, no method of transmission or storage is 100% secure.

6. Data Retention

We retain your data as follows:

  • Account data: retained while your account is active and for 30 days after deletion to allow recovery
  • Resumes and cover letters: retained while your account is active; deleted when you delete them or your account
  • Payment records: retained as required by tax and financial regulations (typically 7 years)
  • Usage logs: retained for up to 12 months for analytics and security purposes

7. Your Rights

Depending on your location, you may have the following rights:

  • Access: request a copy of the personal data we hold about you
  • Correction: update or correct inaccurate personal data
  • Deletion: request deletion of your personal data (you can delete your account from Settings)
  • Export: request your data in a portable format
  • Objection: object to processing of your data for marketing purposes
  • Restriction: request that we limit processing of your data
  • Withdraw consent: withdraw consent for marketing communications at any time

To exercise any of these rights, contact us at the email below or use the relevant features in your account settings.

8. Cookies

We use essential cookies to:

  • Keep you signed in to your account
  • Remember your preferences (language, timezone)
  • Protect against cross-site request forgery (CSRF)

We do not use third-party advertising or tracking cookies. You can configure your browser to reject cookies, but this may affect the functionality of the Service.

9. International Data Transfers

Your data may be processed in countries other than your own. When we transfer data internationally, we ensure appropriate safeguards are in place in accordance with applicable data protection laws.

10. Children's Privacy

The Service is not intended for users under 16 years of age. We do not knowingly collect personal information from children. If we learn that we have collected data from a child under 16, we will delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on the Service and updating the "Last updated" date. We encourage you to review this policy periodically.

12. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, contact us at:

Email: privacy@rezumfit.com

For general support, please contact support@rezumfit.com or visit your account settings.