Legal Document

Privacy Policy

How Vaulty protects your personal data and respects your privacy.

Last updated: January 27, 2025

Your trust is essential to us. This policy explains what information we collect, why we collect it, and how we protect it. Vaulty's mission is to help students, young professionals, and workers create AI-powered resumes and cover letters—securely and with peace of mind.

Section 1

Information We Collect

We only collect what we need to provide our services:

a) Information you provide

  • First name, last name, email address
  • Content you create in Vaulty (resumes, experiences, projects, notes, letters, etc.)
  • Account preferences, settings, and history

b) Technical information

  • IP address, device type, browser
  • Essential cookies for core functionality (login, preferences, security)
  • Anonymized usage data (pages visited, error rates)

c) External integrations (optional)

If you connect Gmail, Calendar, LinkedIn, or other services, Vaulty only accesses the data needed to provide the features you request (e.g., analyzing your emails, extracting jobs, sending reminders).

We never read your emails or notes without your explicit action.

Section 2

How We Use Your Data

Your data is used to:

  • 1Generate and improve your resumes and letters with AI
  • 2Personalize job recommendations (based on your profile)
  • 3Send reminders, notifications, or insights
  • 4Improve the app and detect bugs
  • 5Ensure the security of your account

We never sell your data to third parties.

Section 3

Data Sharing & AI Processing

We only share data when necessary:

  • With our technical providers (hosting, AI, analytics)
  • To comply with a law or valid legal request

Artificial Intelligence Processing

Vaulty uses OpenAI's services to enhance, translate, and analyze your resumes. Here's how we protect your data:

Anonymization

Your personal info is automatically anonymized before sending

Processing only

OpenAI acts as a processor and does not retain your data

No training

Your data is not used to train AI models

Secure connection

All communications are encrypted via HTTPS

All providers must respect confidentiality and use secure protocols.

Section 4

Security

We use:

HTTPS encryption for all communications
Protected storage via Supabase / secure databases
Row-Level Security (RLS) policies
Personal data anonymization before AI processing
Access logging to detect suspicious activity
Measures to prevent unauthorized access

You remain the owner of all your data.

Section 5

Your Rights

At any time, you can:

Access

View your data from your profile

Edit

Update your information

Export

Download all your data (JSON)

Delete

Permanently delete your account

These options are available directly in your profile settings.

Contact: support@vaulty.ca
Section 6

Data Retention

We keep your data for as long as your account is active.

If you delete your account, all your data is permanently removed from our servers.

Section 7

Changes

We may update this policy. The latest update date will always be shown at the top of this page.