Privacy Policy

Effective August 15, 2025

We never sell your data

Your personal and resume information is not sold to third parties.

No AI training on your content

We only use your data to provide and improve Letraz—not to train generalized AI models.

Easy deletion

Live data is deleted immediately on account closure; backups auto-delete within 30 days.

You control sharing

Shareable resume links are optional and can be revoked at any time.

Cookie & analytics choice

Cookie banner supported. Analytics run only on our production domain and can be limited.

Security-first

Encryption in transit and at rest (for sensitive data). We notify of breaches without undue delay.

This Privacy Policy explains how Letraz (operated by Quelac Studios Private Limited) collects, uses, and protects your information. Letraz helps job seekers create tailored, ATS-friendly resumes for each job application. By using Letraz, you agree to this policy.

Information we collect

  • Account and authentication: We use Clerk to authenticate you. Clerk provides us with a unique user ID and associated profile data you choose to share, such as name, email, optional phone number, and profile image.
  • Profile and resume data: Details you enter to build resumes (e.g., first and last name, email, phone, address, city, postal code, nationality, website, professional summary/profile, education, work experience, projects, skills, certifications, and date ranges). When you upload a resume file for parsing, we process the file to extract structured data.
  • Onboarding metadata: We store non-sensitive onboarding progress (e.g., current step, completed steps) to guide you through setup.
  • Usage, analytics, and diagnostics: We use PostHog for product analytics (page views, events, device/browser info) and Sentry for error tracking and session replay with masking enabled. These tools may receive your Clerk user ID and basic attributes (e.g., email, name) for coherent debugging and product improvement. We use Knock for in-app notifications.
  • Public sharing features (planned): If you choose to create shareable resume links, the content you publish via those links may be publicly accessible. You can revoke sharing at any time.
  • Cookies: Essential cookies for authentication and session management, and analytic cookies to understand product usage. See “Your choices” below.

How we use your information

  • Provide and secure the service, including authentication and authorization.
  • Create, edit, and render resumes and related content you request.
  • Operate features such as resume parsing, onboarding flow, and notifications.
  • Improve reliability, performance, and user experience through analytics and error diagnostics.
  • Improve the quality of the service and features. We do not use your resumes or account data to train generalized AI models or for unrelated research.
  • Communicate with you about updates and important notices.

Sharing and disclosure

We do not sell your personal information. We may share data with:

  • Service providers: Clerk (authentication), PostHog (analytics), Sentry (error monitoring and session replay with masking), Knock (notifications), Resend (transactional email), hosting (Vercel, Mumbai region), backend infrastructure (Singapore and Bangalore), storage/CDN (DigitalOcean Spaces, Singapore). These vendors process data on our behalf under contractual safeguards.
  • Legal requirements: If required by law or to protect rights, safety, or the integrity of our services.

Data retention

We retain your account and resume data while your account is active. Upon account closure, we delete live data immediately. Standard backups are retained for up to 30 days and then deleted. We may retain limited information as required by law or for legitimate business purposes (e.g., security, fraud prevention, or legal compliance).

Your choices and rights

  • Access, update, delete: Manage resume content in-app. Contact us to request account deletion.
  • Analytics: You can use browser settings, content blockers, or “Do Not Track” to limit analytics. PostHog is enabled only on our production domain.
  • Cookie preferences: We support a cookie banner. You may decline analytics cookies and still use essential features.
  • Emails: You can opt out of non-essential emails from within those messages when offered.

Security

We implement administrative, technical, and organizational measures to protect your data, including encryption in transit and encryption at rest for sensitive data. No system is 100% secure, but we strive to safeguard your information against unauthorized access, disclosure, or loss. If we become aware of a security breach affecting your personal data, we will notify you without undue delayas required by applicable law.

International data transfers

Our service and vendors may process data in multiple jurisdictions, including India (hosting), Singapore (backend and storage), and other locations required for delivery (e.g., CDN). Where required, we implement appropriate safeguards for cross-border transfers.

Children

Letraz is not directed to children under 16. If you believe a child has provided personal data, please contact us and we will take appropriate steps to remove such information.

Changes to this policy

We may update this policy from time to time. We will post the updated version on this page and update the effective date.

Contact

For privacy requests or questions, contact subhajit@letraz.app or reach us via our Discord community.