Legal

Privacy

Last updated: May 17, 2026

TL;DR. We store your resume to tailor it. We never sell your data. We never train AI on your content. You can delete your account and everything in it at any time. Full details below.

Klepify is a Chrome extension and web service that helps job seekers detect job postings, score their fit, and generate tailored resumes. This policy explains what we collect, why, and what we don't.

1. What we collect

To make Klepify work, we collect:

Account email — for sign-in and account recovery.
Resume content you upload — your name, contact info, work history, skills, and education. Stored on encrypted infrastructure (TLS in transit, encryption at the storage layer), accessible only to your account via Postgres row-level security.
Job posting content from pages you activate Klepify on — the page's text content, URL, and detected fields (title, company, salary, etc.). Used to populate your view and a shared swarm cache that helps other users skip re-processing the same URL.
Application history — the tailored resumes you generate, with their associated job context, so you can re-open and re-download them.
Usage metadata — counts of API calls per user (for rate limiting and billing), error logs (without resume content), and Stripe customer/subscription IDs for paid users.

2. What we never collect

Content of any tab where Klepify is not actively running.
Browsing history, cookies, passwords, or saved autofill data from your browser.
Credit card numbers — these are handled exclusively by Stripe; we receive only the customer ID.
Page content from chrome://, about://, file://, or extension URLs.

3. How we use it

Resume content and job posting content are sent to Google's Gemini API to extract structured data and generate tailored resume text. Google's terms forbid them from using API request content to train their models. We do not share, sell, or rent your data to recruiters, employers, ad networks, or any third party.

4. Sharing — the swarm cache

Job posting metadata (title, company, description, freshness signals) is shared across the Klepify user base. When you visit a job posting we've already seen, you get an instant cached result instead of waiting for another extraction. Your resume, application history, and match scores are never shared with other users.

5. Retention & deletion

You can delete your account at any time from the Klepify side panel. Deletion removes your profile, resume content, application history, and usage records. Job posting metadata you contributed to the swarm cache remains anonymized (it cannot be linked back to your account).

6. Security

We follow industry-standard practices: TLS 1.2+ on all traffic, database row-level security, hashed authentication tokens, signed Stripe webhooks. No system is perfectly secure; if you suspect a breach, email security@klepify.com immediately.

7. GDPR / CCPA

If you reside in the EU, UK, or California, you have the right to access, correct, or delete your data, and to object to processing. Email support@klepify.com with "data request" in the subject and we'll respond within 30 days.

8. Cookies & tracking

The Klepify landing page uses no third-party tracking, no analytics scripts, and no advertising cookies. The Klepify extension itself stores only an authentication token and your current job context in chrome.storage.local — all local to your machine.

9. Changes to this policy

If we make material changes, we'll email registered users at least 30 days before the change takes effect. The "Last updated" timestamp above is the source of truth.

10. Contact

Questions about privacy: support@klepify.com. Security: security@klepify.com.