Back to Home

Privacy Policy

Updated On: February 13, 2026

Introduction

Welcome to Applying Pal. This Privacy Policy explains how we collect, use, and protect your information when you use our Chrome extension. By using Applying Pal, you agree to this policy.

Data Usage Statement

Applying Pal processes data solely to provide functionality requested by the user. Data is never sold, used for advertising, or shared with employers without explicit user action.

All data processing serves one purpose: to help you fill job application forms faster and more accurately. We only access job application pages when you actively use our extension, and we never track your browsing activity outside of these specific interactions.

1. Information We Collect

1.1 Account Information

• Email, name, password (bcrypt hashed)

• Google ID (if using Google OAuth)

1.2 Profile and Resume Data

• Contact info: Name, email, phone, location, LinkedIn, GitHub, portfolio

• Resume: Text, filename, parsed data (experience, education, projects, skills, certifications, languages)

• Preferences: Industry, role, experience, company size

• Q&A pairs: Saved responses (user-created and AI-generated)

• AI notes: Custom instructions (max 500 chars, sanitized)

1.3 Local Browser Storage (NOT sent to servers)

• Resume file (stored in IndexedDB, up to 10MB)

• Job descriptions (stored in Chrome Storage, up to 50 most recent)

• Form history (stored in IndexedDB, up to 1,000 most recent)

• Visited job URLs and authentication tokens

Clearable via extension or browser settings.

1.4 Usage and Analytics

We collect usage information to improve our services and for billing purposes:

• AI credits, feature usage, API metadata

• Subscription and billing info

• App monitoring via New Relic (no PII)

1.5 Payment Information

Stripe handles all payments (PCI-DSS compliant). We store only: Stripe customer ID, subscription ID, and plan status. We never see your credit card numbers.

1.6 Custom API Keys

Your OpenAI/Gemini keys are encrypted (AES-256-GCM) and stored securely. Deletable anytime.

2. How We Use Your Information

We use your data to:

• Provide services (form filling assistance, AI answer generation, smart application completion)

• Authenticate and secure your account

• Process payments and communicate updates

• Improve services and ensure security

• Comply with legal obligations

We do NOT sell data, share profiles with employers without your action, use data for ads, or track you outside supported job platforms.

3. Data Storage and Security

Storage & Security

• Backend: MongoDB Atlas (encrypted at rest), 30-day backups

• Local: Browser (Chrome Storage/IndexedDB)

• Passwords: bcrypt (12 salt rounds)

• API keys: AES-256-GCM encrypted

• Transmission: HTTPS/TLS

• Access: Role-based controls, authentication required

• AI notes: Sanitized for prompt injection protection

No internet security is 100% guaranteed.

4. Third-Party Services

AI Providers

• OpenAI: Resume parsing, answer generation (doesn't train on API data) - openai.com/policies/privacy-policy

• Google Gemini: Alternative AI provider - policies.google.com/privacy

Infrastructure & Payment

• Stripe: Payment processing (PCI-DSS) - stripe.com/privacy

• Google OAuth: Optional login - policies.google.com/privacy

• MongoDB Atlas: Database with encryption - mongodb.com/legal/privacy-policy

• New Relic: Performance monitoring (no PII) - newrelic.com/termsandconditions/privacy

5. Browser Permissions

We request only the permissions necessary for core functionality:

• storage: Saves your resume, job descriptions, and form history locally in your browser (not on our servers)

• activeTab & scripting: Detects and helps fill application forms only when you click to use the extension. We never access pages automatically.

• sidePanel: Displays the extension UI in Chrome's side panel

• Host permissions: Access to job platforms (linkedin.com, greenhouse.io, lever.co, ashbyhq.com, workable.com, indeed.com) ONLY when you visit these sites. We detect form fields, extract job descriptions for AI answers, and help you fill forms faster. We do NOT access other websites, track general browsing, or share your data with employers without your explicit action (clicking Apply/Submit).

6. Data Retention

• Account/profile: Until deletion

• Local browser data: Until manually cleared

• Usage logs: 90 days

• Backups: 30 days

• Deleted accounts: Permanently removed upon deletion. We do not store any data after deletion.

You can request deletion of your account or data at any time by contacting support@applyingpal.com.

7. Your Rights

• Access, rectify, or erase your data

• Download your data (portability)

• Withdraw consent or use custom API keys

Contact support@applyingpal.com or use extension settings.

8. Cookies and Tracking

• Essential only: Authentication tokens

• No advertising, cross-site tracking, or analytics cookies

• Server-side analytics only (no PII)

• Job monitoring: Only on supported platforms when extension is active

9. Policy Changes

We may update this policy. Material changes: email notification and extension alert. Continued use = acceptance. Review periodically.

10. Contact

Questions or requests: support@applyingpal.com (30-day response)

11. Acknowledgment

Using Applying Pal = you've read and understood this policy.

Questions?

If you have any questions about this Privacy Policy, please contact us at support@applyingpal.com

Return to Home