Privacy Policy

Effective date: 2025-12-06

FastCV Maker ("we", "us", "our") provides an AI-powered resume creation application and related web services (collectively, the "Service"). This Privacy Policy explains what information we collect, how we use it, when and why we disclose it, and how you can exercise your privacy rights. This Policy is intended to meet the disclosure requirements required by app marketplaces (including the Apple App Store).

1. What information we collect

We collect information you provide directly and certain technical/usage information needed to operate, secure and improve the Service. Below are categories of data we may collect and examples of each.

1.1. Information you provide

Account & Profile Data: name, email address, password (hashed), profile photo, and any profile fields you provide when registering.
Resume / CV Data: job titles, work history, education, skills, summary text, uploaded profile photo(s), and any files you upload to the Service (e.g. images, documents).
Support & Communications: messages you send to our support team, feedback, or other communications.
Payment & Subscription Data: When you subscribe to Premium, payments are processed by third-party payment providers (Apple In-App Purchase, Google Play Billing, Stripe, etc.). We do not store raw card numbers or payment credentials; payment providers handle those details. We may store transactional metadata such as subscription status, purchase date, and invoice identifiers.

1.2. Technical and usage data

Device information: device model, operating system and version, device identifiers (as permitted by platform rules), locale, timezone.
Usage data: app version, features used, crash reports, performance metrics, logs, and analytics events.
Network data: IP address, approximate location derived from IP (country level), and connection information.

1.3. Derived or aggregated data

We may aggregate or de-identify information to create analytics or product improvement data. Aggregated data does not identify you and may be used for business purposes.

2. How we use information

Provide and operate the Service: to create, store and export resumes, manage accounts and subscriptions, and deliver features you request.
AI resume generation: to send text data you provide (job title, experience, bullets, summary prompts) to third-party AI providers (for example OpenAI) where the provider generates suggested text such as summaries or rewritten bullets. See Section 5 for details.
Payments & billing: to process subscriptions, refunds and communicate billing information (payments handled by third-party providers).
Security and fraud prevention: to detect abuse, secure accounts, and protect our platform.
Analytics & product improvement: to analyze usage and improve the Service.
Communications: to respond to support requests, send important notices and updates.

3. Legal bases for processing (where applicable)

If you are in the EU/EEA or UK, our legal bases for processing your personal data include:

Performance of a contract (to provide the Service you requested).
Your consent (for optional processing such as AI text generation or analytics where we ask for permission).
Our legitimate interests (to operate and secure the Service, and for fraud prevention), balanced against your privacy rights.
Compliance with legal obligations.

4. Sharing and disclosure of data

We may share information in the following circumstances:

Service providers: We use third-party vendors to power parts of the Service, such as hosting (e.g., AWS, GCP), analytics (e.g., Firebase, Amplitude), payments (Apple IAP, Google Play Billing, Stripe), crash reporting, email delivery, and AI providers (e.g., OpenAI). These providers may process data on our behalf. We require those providers to use data only as necessary to perform the services they provide.
Legal obligations: when required by law, to respond to lawful requests by public authorities, or to comply with legal process.
Business transfers: in connection with a merger, acquisition, reorganization, sale of assets or bankruptcy, user data may be transferred; we will require the acquirer to honor this Policy.
With your consent: we may share data if you ask us to or explicitly consent to a specific sharing (for example, exporting your CV to a third-party service).

5. Use of AI and third-party AI providers (e.g., OpenAI)

We use AI services to assist with generating or improving resume content (for example, summary paragraphs or rewritten bullet points). When you request AI-generated content, the Service will send the relevant text you provide (job title, CV text, prompts) to the AI provider.

Important: Please avoid including highly sensitive personal data in prompts, such as government-issued identifiers, financial account numbers, highly sensitive medical details, or information about minors.

AI providers have their own processing policies. We encourage you to review the privacy policies and terms of the AI provider (for example, OpenAI’s policies). We do not control how third-party providers process data beyond our contractual arrangements with them.

6. App Store-specific disclosures and compliance

To comply with Apple’s App Store requirements, we disclose the following:

Privacy Policy URL: This page should be provided as the Privacy Policy URL in App Store Connect.
App Privacy (Data Collection): In App Store Connect, developers must identify data types collected (Contact Info, Identifiers, Usage Data, Diagnostics, etc.). Please ensure the App Store Connect privacy "nutrition label" matches the data described here.
Third-party data sharing: We use third-party providers (OpenAI, analytics, hosting, payment providers). If your app uses third-party SDKs that collect data, list them in App Store Connect as required.
Consent and user controls: If data is shared with AI providers, the app must clearly disclose this, obtain consent where required, and provide a way to revoke consent. See Section 9 for how to change consent settings.
Children’s privacy: The app is not directed to children under 13. If we become aware of data from persons under the applicable minimum age (13 in many jurisdictions), we will delete it.

7. Data retention

We retain your personal data for as long as needed to provide the Service and fulfill the purposes described here, unless a longer retention period is required legally. When you delete your account or request deletion, we will delete your personal data from active systems within a reasonable time frame; backups may persist for a limited period as required for business continuity or compliance.

8. Your rights and choices

Depending on your jurisdiction, you may have rights regarding your personal data, including the right to access, correct, download, or delete your data, and to restrict or object to processing. To exercise these rights, contact us at support@yourdomain.com. We will respond in accordance with applicable law.

8.1. Consent & revoke

If you have given consent for AI processing or analytics, you may revoke that consent at any time via the in-app privacy settings or by contacting support. Revoking consent will not affect processing that occurred prior to revocation.

8.2. Opt-out of analytics

You may opt out of non-essential analytics in the app settings. Note that opting out of analytics may limit our ability to improve the Service.

9. Security

We implement administrative, technical and physical safeguards designed to protect your information. These include encryption in transit (TLS), secure storage practices, access controls and periodic security testing. No method of transmission or storage is completely secure; we cannot guarantee absolute security.

10. International data transfers

Your information may be processed and stored in countries outside your country of residence, including the United States. Where required by law, we rely on appropriate safeguards (such as Standard Contractual Clauses) for such transfers.

11. Children

The Service is not intended for children under 13. We do not knowingly collect personal data from children under 13. If we learn we have collected such data, we will promptly delete it.

12. Changes to this policy

We may update this Privacy Policy from time to time. When changes are made, we will update the "Effective Date" at the top of this page and, for material changes, provide additional notice (for example via email or an in-app notice) as appropriate.

13. Contact

If you have questions, requests, or complaints about this Privacy Policy or our data practices, please contact:

FastCV Maker (YOUR_COMPANY_NAME)
Email: support@yourdomain.com
Website: https://yourdomain.com
Address: [Company mailing address]

14. Appendix — App Store Data Checklist

Below is a checklist to help you map this policy to App Store Connect requirements. Ensure the App Store Connect "App Privacy" answers match these items:

Contact Info (Yes — name/email stored when user registers).
User Content (Yes — resume text, uploaded photos, files).
Identifiers (Yes — device identifiers, account ID).
Diagnostics (Yes — crash reports, logs).
Usage Data (Yes — events, feature usage).
Payments (Handled by platform providers; we store transaction metadata).
Third-party SDKs: list every SDK used and include their privacy URLs in App Store Connect metadata.

Last updated: 2025-12-06