JobPlyBack to Home
Privacy Policy

Your Privacy Matters

We're committed to protecting your personal information and being transparent about how we collect, use, and protect your data.

Last Updated: January 1, 2025

Table of Contents

OverviewInformation We CollectHow We Use Your InformationThird-Party ServicesData Sharing & DisclosureYour Rights & ControlsData RetentionSecurity MeasuresSpecial ConsiderationsCookies & TrackingChanges to This PolicyContact UsCompliance & CertificationsYour Consent

Overview

JobPly ("we", "our", or "the extension") is a Chrome extension and web platform that automates job applications across LinkedIn, Workday, and Greenhouse platforms. This privacy policy explains what data we collect, how we use it, and your rights regarding your information.

We are committed to protecting your privacy and ensuring you have a positive experience when using our services. This policy outlines our practices concerning the collection, use, and disclosure of your information.

Information We Collect

1. User Profile Data

When you create an account and set up your profile, we collect and store:

  • Full name, email address, and phone number
  • Location information (city, state, country, and address)
  • Professional title and work experience history
  • Education history, including schools, degrees, and dates
  • Skills, languages, and certifications
  • Resume and cover letter files
  • Portfolio links and social media profiles (LinkedIn, GitHub, etc.)
  • Work authorization status and visa sponsorship requirements
  • Job preferences (salary expectations, start date, preferred work location)
  • Optional demographic information (for EEO compliance when applying to jobs)

2. Job Application Data

We automatically track and store information about your job applications:

  • Job titles, companies, and descriptions
  • Job URLs and unique identifiers
  • Application dates, times, and status updates
  • Custom resumes generated for specific applications
  • Notes and follow-up information you add
  • Communication history related to applications

3. Authentication & Account Data

We use Supabase for secure authentication and store:

  • Login credentials (securely hashed using industry-standard encryption)
  • OAuth tokens (for Google and GitHub sign-in)
  • Session information and authentication tokens
  • Account creation and last login timestamps

4. Usage & Analytics Data

To improve our service, we collect:

  • Extension settings and user preferences
  • Feature usage patterns (e.g., custom resume generation, cold email tools)
  • Error logs and debugging information (to fix bugs and improve performance)
  • Device and browser information
  • Application statistics (total applications, response rates, streaks)

5. Contact Discovery Data (Cold Email Feature)

When you use our cold email feature:

  • Company domain names and job URLs you provide
  • Contact names, job titles, and email addresses discovered through Snov.io
  • Generated email content (subjects and bodies)
  • Email send history and contact interaction data

How We Use Your Information

Primary Uses

  • Autofill job applications: We use your profile data to automatically fill out job application forms on LinkedIn, Workday, and Greenhouse
  • Custom resume generation: We use AI to generate tailored resumes based on specific job descriptions and your profile
  • Application tracking: We track which jobs you've applied to, preventing duplicate applications and providing analytics
  • Cold email outreach: We help you discover and contact recruiters and hiring managers with personalized emails
  • Authentication: We verify your identity to protect your data and ensure only you can access your account
  • Analytics & insights: We provide statistics on your job search progress, including application streaks and response rates
  • Service improvement: We analyze usage patterns to improve features and fix bugs
  • Customer support: We use your information to respond to your inquiries and provide assistance

Data Storage & Security

  • All user data is securely stored in Supabase (a PostgreSQL-based database with enterprise-grade security)
  • Data is encrypted in transit using HTTPS/TLS protocols
  • Data at rest is encrypted using AES-256 encryption
  • Authentication uses industry-standard security practices (bcrypt hashing, secure session tokens)
  • We implement Row-Level Security (RLS) policies to ensure users can only access their own data
  • Regular security audits and updates are performed

Third-Party Services

Supabase (Database & Authentication)

We use Supabase for:

  • User authentication and account management
  • Database storage for all user data
  • File storage for resumes and cover letters
  • Real-time data synchronization between extension and web app

Privacy Policy: https://supabase.com/privacy

OpenRouter (AI Service)

When you use custom resume generation or cold email features:

  • Your profile data and job description are sent to OpenRouter's API
  • OpenRouter uses AI models (Qwen) to generate customized content
  • No data is stored by OpenRouter after generation
  • All API calls are encrypted and secure

Privacy Policy: https://openrouter.ai/privacy

Snov.io (Contact Discovery)

When you use the cold email feature:

  • Company names and domains are sent to Snov.io to discover contact information
  • Snov.io searches their database for recruiter and hiring manager contacts
  • Email addresses and contact details are returned to our service
  • We do not share your personal profile data with Snov.io

Privacy Policy: https://snov.io/privacy-policy

Job Platform Websites

The extension operates on:

  • LinkedIn (linkedin.com)
  • Workday sites (*.workday.com, *.myworkdayjobs.com)
  • Greenhouse (*.greenhouse.io)

We do not collect data from these sites beyond what you explicitly provide in your profile. We only interact with these sites to autofill forms when you initiate an application.

Data Sharing & Disclosure

We DO NOT:

  • Sell your personal information to third parties
  • Share your data with advertisers or marketing companies
  • Use your data for marketing purposes unrelated to our service
  • Share your data with employers without your explicit action (clicking "Apply")
  • Access your email account or send emails on your behalf without permission
  • Track you across other websites or apps

We ONLY Share Data:

  • With job application platforms when you click "Apply" to submit an application (LinkedIn, Workday, Greenhouse)
  • With our infrastructure providers (Supabase, OpenRouter, Snov.io) solely to deliver the service
  • With your email client when you choose to send a cold email (Gmail, Outlook, etc.)
  • When required by law or legal process (court orders, subpoenas, regulatory requests)
  • To protect rights and safety when necessary to prevent fraud, abuse, or security threats
  • With your explicit consent for any other purposes not listed here

Your Rights & Controls

You have complete control over your data. Here are your rights and how to exercise them:

Right to Access

View all data we have about you, including profile information, applications, and activity history.

How: Use the extension's profile management interface or contact us

Right to Correction

Update or correct any inaccurate or incomplete profile information.

How: Edit your profile directly in the extension or web app

Right to Deletion

Delete your account and all associated data permanently.

How: Contact us at contact@jobply.ai

Right to Export

Download your data in a portable format (JSON, CSV).

How: Contact us at contact@jobply.ai

Right to Opt-Out

Disable specific features like custom resume generation, cold email tools, or analytics.

How: Adjust settings in the extension or stop using specific features

Right to Portability

Transfer your data to another service in a machine-readable format.

How: Contact us at contact@jobply.ai

Response Time: We will respond to your request within 30 days. For deletion requests, all data will be permanently removed within 30 days of confirmation.

Data Retention

  • Active accounts: We retain your data as long as your account is active and you continue to use our services.
  • Deleted accounts: When you request account deletion, all personal data is permanently removed from our servers within 30 days. This includes:
    • Profile information and preferences
    • Application history and notes
    • Uploaded resumes and cover letters
    • Generated content and email drafts
    • Authentication credentials and session data
  • Inactive accounts: Accounts inactive for 2+ years may be deleted after email notification. We will send reminder emails at 18 months and 24 months of inactivity.
  • Legal retention: We may retain certain data for longer periods if required by law or to comply with legal obligations.
  • Aggregated data: We may retain anonymized, aggregated data (with no personal identifiers) for analytics and service improvement indefinitely.

Security Measures

We implement comprehensive security measures to protect your data:

Encryption

  • TLS/HTTPS for all data transmission
  • AES-256 encryption for data at rest
  • Secure storage for uploaded files

Authentication

  • Bcrypt password hashing
  • Secure session management
  • OAuth 2.0 for third-party sign-in

Database Security

  • Row-Level Security (RLS) policies
  • Parameterized queries (SQL injection prevention)
  • Regular backups and disaster recovery

Ongoing Protection

  • Regular security audits
  • Vulnerability scanning and patching
  • Employee training on data privacy

Security Breach Notification: In the unlikely event of a data breach, we will notify affected users within 72 hours via email and provide detailed information about the incident and steps being taken.

Special Considerations

Children's Privacy

JobPly is not intended for users under 18 years of age. We do not knowingly collect personal information from children under 18. If we discover that we have inadvertently collected information from a child under 18, we will delete it immediately. If you believe we have collected information from a child under 18, please contact us at contact@jobply.ai.

International Users

Our services are hosted in the United States. If you are accessing JobPly from outside the US, please be aware that:

  • Your data will be transferred to and stored in the United States
  • US data protection laws may differ from those in your country
  • We comply with applicable international data transfer requirements
  • For EU users, we implement appropriate safeguards for GDPR compliance

California Residents (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information is collected
  • Right to know if personal information is sold or disclosed
  • Right to opt-out of the sale of personal information (we do not sell your data)
  • Right to deletion of personal information
  • Right to non-discrimination for exercising your rights

European Users (GDPR)

If you are in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

  • Right to access your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent at any time

Cookies & Tracking

We use cookies and similar tracking technologies to improve your experience:

Essential Cookies (Required)

Necessary for the service to function:

  • Authentication and session management
  • Security and fraud prevention
  • Remembering your settings and preferences

Analytics Cookies (Optional)

Help us understand how you use our service:

  • Page views and feature usage
  • Performance monitoring
  • Error tracking and debugging

You can opt out of analytics cookies in your browser settings.

Managing Cookies: You can control cookies through your browser settings. Note that disabling essential cookies may affect functionality.

Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of significant changes by:

  • Updating the "Last Updated" date at the top of this policy
  • Displaying a prominent notification in the extension or web app
  • Sending an email notification to your registered email address
  • Requiring you to accept the new policy before continuing to use the service (for material changes)

We encourage you to review this policy periodically. Your continued use of JobPly after changes are posted constitutes your acceptance of the updated policy.

Contact Us

If you have questions, concerns, or requests regarding this privacy policy or our data practices, please contact us:

Email

contact@jobply.ai

For general inquiries and support

Privacy Team

hasnain.bharmal@jobply.ai

For privacy-specific concerns

We aim to respond to all inquiries within 5 business days. For urgent security concerns, please include "URGENT" in your email subject line.

Compliance & Certifications

JobPly complies with the following regulations and standards:

Chrome Web Store Policies

Full compliance with Chrome Web Store Developer Program Policies, including data disclosure and permissions usage.

GDPR Compliance

Adherence to General Data Protection Regulation principles for EU users, including data minimization and user rights.

CCPA Compliance

California Consumer Privacy Act compliance, including disclosure of data collection and user rights.

SOC 2 Type II

Our infrastructure provider (Supabase) maintains SOC 2 Type II certification for security and data protection.

Questions About Your Privacy?

We're here to help. Reach out to our privacy team anytime.

Contact UsBack to Home