Privacy Policy

jobpill is an AI-powered job matching service operated as a personal project. For questions about your data, contact us at hello@jobpill.io.

• Account data — email address and, if you sign in with Google, your Google profile name. This is collected by Supabase Auth.
• CV text — when you upload your CV during onboarding, we extract its text and store it to generate your scoring criteria. The original file is not stored.
• Profile data — name, current title, location, languages, salary floor, availability date, and timezone you provide during onboarding.
• Scoring criteria — the bonus/penalty rules generated from your CV and edited by you.
• Vacancy data — job listings matched to your profile, including your application status and rejection notes.

• To match job vacancies against your profile and scoring criteria.
• To send you email digests of new matches (via Resend).
• To improve matching accuracy over time using your feedback (status changes, rejections).

We do not sell your data. We do not use your data for advertising.

We process your data on the basis of your explicit consent given when you create an account and upload your CV. You may withdraw consent at any time by deleting your account.

All data is stored in Supabase (EU region). Your CV text is stored in our database and is used solely for the purpose of generating and updating your job-matching criteria.

Row-level security ensures that only you can read or modify your own data. Even within our team, access to individual user data is limited to what is necessary for support.

Authorised jobpill admins may sign in to your account to provide support, investigate issues you report, or diagnose product problems. When this happens, the admin sees your account exactly as you do; sensitive operations (changing your email or password, deleting your account, or modifying payment methods) remain blocked.

Every such access is recorded in an internal audit log — the admin's identity, the reason given, the time of access, and every action they take while signed in as you. This log is retained so that any access to your account can be reviewed.

If you would prefer that no admin ever sign in to your account for support purposes, contact us at hello@jobpill.io and we will flag your account.

• Access — you can view all your profile data in the app at any time.
• Correction — you can edit your profile, criteria, and personal fields directly in the app.
• Erasure of CV — you can delete your stored CV text from Profile → Delete CV.
• Full deletion — to delete your entire account and all associated data, email us at hello@jobpill.io. We will process the request within 30 days.
• Portability — contact us to receive a copy of your data in JSON format.

• Supabase — database and authentication (EU infrastructure).
• Vercel — webapp hosting.
• Hetzner — EU-based VPS that runs the scheduled scraper; accesses your profile and sources via Supabase only.
• Resend — transactional email delivery.
• Anthropic Claude — AI processing of CV text and vacancy scoring. CV text is sent to Anthropic's API for processing. Anthropic's data processing terms apply.
• GitHub Actions — admin-only on-demand scraper trigger; no personal data is processed here beyond your Supabase user ID.

We use only session cookies required for authentication (set by Supabase Auth). No tracking or advertising cookies are used.

If we make material changes to this policy, we will update the “Last updated” date above. Continued use of the service after changes constitutes acceptance of the updated policy.

For any privacy-related questions or requests, contact us at hello@jobpill.io.