Ryusume LogoRyusume

Privacy Policy

Your trust is important to us. Here's how we handle your data.

Last Updated: October 26, 2023

1. Introduction

Welcome to Ryusume ("we", "our", or "us"). This Privacy Policy explains how we collect, use, share, and protect your personal information and the content you provide (like resumes and job descriptions) when you use our AI-powered resume tailoring service (the "Service"). By accessing or using our Service, you agree to the terms of this Privacy Policy.

2. Information We Collect

We collect information necessary to provide and improve our Service:

2.1 Information You Provide Directly

  • Account Information: Your name, email address, and password when you register for an account.
  • Resume & Job Content: The resumes (PDF, Word, LaTeX) and job descriptions you upload or paste for tailoring.
  • Payment Information: When you subscribe to Premium, your payment details are collected and processed securely by our third-party payment processor (e.g., Stripe or PayPal – we do not store your full credit card number).
  • Communications: Any information you provide when contacting support.

2.2 Information Collected Automatically

  • Usage Data: Information about how you interact with the Service, such as features used, number of resumes tailored, timestamps, and performance metrics. This helps us understand usage patterns and improve the service.
  • Device & Connection Information: Standard technical information like your IP address, browser type, operating system, and device identifiers, primarily for security, analytics, and compatibility purposes.
  • Cookies & Similar Technologies: We use essential cookies for session management, security, and basic functionality. We may also use cookies for analytics to understand service usage (see Section 7).

3. How We Use Your Information

We use the information collected for the following purposes:

  • To Provide & Operate the Service: To create your account, process your resume and job description inputs using our AI, generate tailored resumes, and manage your subscription.
  • To Improve & Develop the Service: To analyze usage patterns, troubleshoot issues, identify areas for enhancement, and train internal models (using anonymized or aggregated data where possible).
  • To Process Payments: To manage subscriptions and process payments securely via our payment partners.
  • To Communicate With You: To respond to support requests, send service-related announcements (e.g., updates, security alerts), and provide information about your account.
  • For Security & Compliance: To prevent fraud, enforce our Terms of Service, protect the security of our platform, and comply with legal obligations.

4. AI Processing & Data Handling

The core of our Service involves processing your resume and job description content using Artificial Intelligence.

  • Processing: Your provided resume and job description text is securely transmitted and processed by our AI models to generate the tailored output.
  • Third-Party AI Providers: We may utilize secure API connections to third-party AI model providers (such as OpenAI or Anthropic) for parts of the processing. These providers are selected based on their capabilities and commitment to data privacy.
  • Provider Policies: Data processed via third-party APIs is subject to their respective data usage policies. For example, major providers like OpenAI explicitly state they do not use data submitted via their API to train their models by default. We rely on these commitments.
  • No Training on Your Content (Generally): We do not use your identifiable resume content or personal information to train general-purpose AI models shared across users, unless explicitly stated and consented to (e.g., for optional feature improvements where data might be anonymized).

5. Data Security

We are committed to protecting your information. While acknowledging that no system is 100% impenetrable, we implement robust technical and organizational measures designed to safeguard your data:

  • Encryption: We use industry-standard TLS/SSL encryption for data transmitted between your device and our servers. Sensitive data stored in our databases (like user credentials and potentially stored resume data) is encrypted at rest.
  • Secure Infrastructure: Our Service is hosted on reputable cloud platforms (e.g., Vercel, AWS) that provide extensive built-in security features and compliance standards.
  • Access Controls: Access to user data is strictly limited to authorized personnel (in this case, primarily the founder/developer) who need it to operate, develop, or troubleshoot the Service.
  • Secure Payment Processing: We integrate with trusted payment processors (Stripe/PayPal) who are PCI-DSS compliant. We do not store your full payment card details on our servers.
  • Secure Coding Practices: We follow secure coding guidelines to minimize vulnerabilities within the application itself.
  • Regular Updates: We keep our software dependencies and server infrastructure updated to patch known vulnerabilities.

Despite these measures, you also play a role in security by using a strong password and keeping your account credentials confidential.

6. Data Sharing and Disclosure

We do not sell your personal information. We limit data sharing to the following necessary circumstances:

  • Service Providers: We share information with third-party companies that perform services on our behalf, under strict confidentiality agreements. These include:
    • Cloud Hosting Providers (e.g., Vercel, AWS) for hosting the application and storing data.
    • Payment Processors (e.g., Stripe, PayPal) for handling subscription payments.
    • AI Model Providers (e.g., OpenAI, Anthropic via API) for core resume processing functionality.
    • Analytics Providers (e.g., Google Analytics, if used) to understand service usage (typically aggregated/anonymized).
  • Legal Requirements: We may disclose your information if required by law, subpoena, or other legal process, or if we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.
  • Business Transfers: In the event of a merger, acquisition, or asset sale, your information may be transferred as part of the transaction, subject to the receiving party adhering to privacy commitments comparable to this policy.

7. Your Data Rights and Choices

Depending on your location (e.g., GDPR, CCPA), you may have certain rights regarding your personal information. We extend these rights where feasible:

  • Access: You can request access to the personal information we hold about you.
  • Correction: You can request correction of inaccurate or incomplete data. (You can often update account info directly).
  • Deletion: You can request the deletion of your account and associated personal information, subject to legal or operational retention needs.
  • Data Portability: You may request a copy of your data in a machine-readable format.
  • Opt-out of Marketing: You can unsubscribe from promotional emails using the link provided in the email. (We primarily send service-related emails).
  • Withdraw Consent: Where processing is based on consent, you can withdraw it (though this may affect service usability).

To exercise these rights, please contact us at [email protected] or manage options available within your account settings (if applicable).

8. Cookie Policy

We use cookies (small text files stored on your device) and similar technologies. Primarily, we use essential cookies required for the Service to function, such as maintaining your login session and ensuring security.

By using the Service, you consent to the use of essential cookies. For more details or if using non-essential cookies, consider adding a separate Cookie Policy page link.

9. Children's Privacy

Our Service is not directed to individuals under the age of 16 (or the relevant age of majority in your jurisdiction). We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected such information, we will take steps to delete it.

10. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with the Service. We also retain data as necessary to comply with legal obligations, resolve disputes, and enforce our agreements. Uploaded resume/JD content processed for tailoring may be retained temporarily for operational purposes (e.g., history features for Premium users, troubleshooting) but is generally not kept long-term unless part of stored user data (like version history). You can request deletion of your account and associated data as described in Section 7.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any significant changes by posting the new policy on this page and updating the "Last Updated" date. We encourage you to review this policy periodically.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your data, please contact us at:
[email protected]