Privacy

Privacy Policy

We are committed to protecting your personal information. Here is how we handle your data.

Last updated: 18 May 2026

1. Who We Are

MyCareerMate is an AI-powered career tools platform operated by Ishaan Manga (ABN 56 700 763 174) ("we", "us", "our"). Our platform is available at mycareermate.io.

We are committed to protecting your personal information in accordance with applicable privacy laws. Where applicable, we also respect the requirements of the EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

For any privacy-related enquiries, contact us at info@mycareermate.io.

2. Information We Collect

2.1 Information You Provide Directly

Account information: your name, email address, and password (hashed; never stored in plain text).
Profile & onboarding data: target job role, industry, skills, work experience, education history, and career goals.
Resume content: all text, work history, education, skills, and other information you enter into the Resume Builder.
Cover letters: job descriptions and generated letter content.
Job applications: company names, job titles, application statuses, notes, and interview events you log in the Job Tracker.
LinkedIn profile data: headline, summary, and profile URL if you use the LinkedIn Optimizer feature.
Mock interview data: questions, your answers, and AI feedback from interview sessions.
Contact records: networking contacts you add to the platform.
Payment information: billing details are processed directly by Stripe. We do not store your card number, CVV, or full payment details on our servers.
Communications: support requests, feedback, feature suggestions, and any messages you send to us.
Referral data: your referral code usage and commission history if you participate in our Referral Programme.

2.2 Information Collected Automatically

Usage data: pages visited, features used, buttons clicked, and session duration — used to improve the platform.
Device & browser information: browser type and version, operating system, screen resolution, and device type.
IP address: used for fraud prevention, rate limiting, and anti-abuse checks (including referral self-referral detection).
Device fingerprint: a non-personally identifiable browser fingerprint used solely for anti-fraud and anti-abuse purposes (e.g., detecting self-referrals).
Session tokens: stored as secure, HTTP-only cookies to keep you logged in.
Log data: server-side request logs including timestamps and API endpoints accessed.

3. How We Use Your Information

To provide the service: operating resume builder, job tracker, AI tools, mock interviews, and all other platform features.
AI processing: your career data (resume content, target role, job descriptions) is sent to our AI provider (OpenAI) to generate suggestions, tailored content, and analysis. See Section 4.
Account management: authentication, password resets, and account security.
Payment processing: subscription billing, trial management, and refund handling via Stripe.
Transactional communications: welcome emails, billing receipts, subscription change notifications, and password reset emails.
Product updates: occasional emails about new features or changes. You may opt out at any time.
Fraud & abuse prevention: detecting self-referrals, fake accounts, high-refund-rate fraud, and other misuse.
Analytics & improvement: understanding how users interact with features to guide product development. We use anonymised or aggregated data where possible.
Legal compliance: to comply with applicable laws, regulations, and legal processes.

4. Third-Party Services & Data Sharing

We do not sell your personal data. We share data only with the service providers necessary to operate the platform:

Provider	Purpose	Data Shared	Location
OpenAI	AI feature processing (resume tailoring, cover letters, mock interviews, LinkedIn optimisation)	Resume content, job descriptions, career profile data	USA
Stripe	Payment processing and subscription management	Name, email, billing address, payment method	USA
Google	OAuth 2.0 sign-in (if you choose "Sign in with Google")	Name, email address, profile picture	USA
Resend	Transactional email delivery	Email address, email content	USA
Adzuna	Job listing data for the Job Matching feature	Search keywords, location preferences	UK / Global

All third-party providers are bound by their own privacy policies and, where applicable, data processing agreements. We encourage you to review their policies.

We may also disclose your information if required by law, court order, or government authority, or to protect the rights, property, or safety of MyCareerMate, our users, or others.

5. Data Storage & Security

Your data is stored in secure cloud databases. We implement industry-standard security measures including:

HTTPS encryption for all data in transit
HTTP-only, secure session cookies
Hashed passwords (never stored in plain text)
Access controls limiting who can access production data
Regular dependency updates and security patching

No method of transmission over the internet or electronic storage is 100% secure. While we take commercially reasonable precautions, we cannot guarantee absolute security.

6. Data Retention

Active accounts: data is retained for as long as your account remains active.
Deleted accounts: upon account deletion, your personal data is removed from our systems within 30 days.
Payment records: transaction records may be retained for up to 7 years to comply with tax and financial record-keeping obligations.
Referral commission records: retained for 7 years for financial record-keeping.
Log data: server logs are typically retained for 90 days.

7. Cookies & Local Storage

We use the following types of cookies and browser storage:

Essential cookies: session tokens required for authentication. Cannot be disabled without breaking the service.
Functional storage: browser localStorage is used to remember UI preferences (e.g., dismissed banners, theme settings).
Analytics: we may collect anonymised usage statistics. We do not use third-party advertising cookies.

You can clear cookies and local storage via your browser settings at any time.

8. Your Rights

Subject to applicable law, you have the right to:

Access: request a copy of the personal data we hold about you.
Correction: request correction of inaccurate or incomplete data.
Deletion: request deletion of your account and personal data.
Portability: request your data in a portable format (where technically feasible).
Objection / Restriction: object to or restrict certain processing of your data.
Withdraw consent: withdraw consent for any processing based on consent at any time.

To exercise any of these rights, email us at info@mycareermate.io. We will respond within 30 days.

9. International Users

If you access the platform from the EEA, United Kingdom, or other jurisdictions with data protection laws, your data may be transferred to and processed in other countries including the USA.

GDPR (EU/UK users): you have the right to lodge a complaint with your local data protection authority.

CCPA (California users): we do not sell personal information. You have the right to know what data we collect and request deletion.

10. Children

MyCareerMate is intended for users who are 18 years of age or older. We do not knowingly collect personal information from anyone under 18. Contact us at info@mycareermate.io if you believe we have data from a minor.

11. Links to Third-Party Websites

Our platform may contain links to third-party websites. We are not responsible for the privacy practices of those sites and encourage you to read their privacy policies.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you via email and/or a prominent notice on the platform at least 14 days before the changes take effect.

13. Contact & Complaints

For privacy enquiries: info@mycareermate.io. We aim to respond within 30 days.

If unsatisfied, you may contact your local data protection authority.