Privacy Policy

Effective Date: December 10, 2024

1. Information We Collect

We collect information you provide directly to us, such as when you create an account, upload resumes, or use our services. This may include:

  • Personal information (name, email address, contact information)
  • Professional information (resume content, work history, skills)
  • Account credentials and preferences
  • Usage data and analytics
  • Advertising identifiers and behavioral data for ad personalization
  • Device information, browser type, and interaction patterns

2. How We Use Your Information and Legal Basis

We use the information we collect for the following purposes, with the corresponding legal basis:

  • Provide, maintain, and improve our services - Legal basis: Performance of contract
  • Process and optimize your resume content - Legal basis: Performance of contract
  • Generate personalized recommendations and content - Legal basis: Performance of contract
  • Communicate with you about our services - Legal basis: Legitimate interest
  • Ensure security and prevent fraud - Legal basis: Legitimate interest
  • Comply with legal obligations - Legal basis: Legal obligation
  • Display relevant advertisements and measure ad effectiveness - Legal basis: Consent (via cookie banner)
  • Analyze user behavior and improve our services through analytics - Legal basis: Consent (via cookie banner)
  • Personalize your experience and content recommendations - Legal basis: Legitimate interest

3. Information Sharing

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

  • With your explicit consent
  • To comply with legal requirements
  • To protect our rights and safety
  • With service providers who assist in our operations (under strict confidentiality agreements)
  • With advertising partners (Google Ads, Google Analytics) to display relevant ads and measure campaign effectiveness
  • With analytics providers to understand user behavior and improve our services

4. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the internet is 100% secure.

5. Data Retention

We retain your personal information for as long as necessary to provide our services and fulfill the purposes outlined in this privacy policy, unless a longer retention period is required by law. To prevent abuse of our free services, we retain a cryptographic hash of your LinkedIn profile URL even after account deletion. This hash cannot be used to identify you or recover your LinkedIn information, but prevents the same LinkedIn profile from being used to gain accesss to multiple free trials. We retain this hash for seven years from the date of account deletion.

Cached Data: To improve performance and reduce costs, our system caches processed content and AI responses. All cached data automatically expires after 90 days. If you delete your account, any of your information in our cache will be retained until this 90-day expiration period, after which it is permanently deleted from our systems.

6. Data Requirements and Consequences

When using our service, certain information is required while other information is optional:

  • Required Information: Email address, full name, and password are required to create an account and access our services. Failure to provide this information will prevent you from using the service.
  • Required for Functionality: Resume content or professional experience data is required to use our optimization services. Without this information, the core features of our service cannot function.
  • Optional Information: Additional profile details (location, phone, LinkedIn URL, etc.) are optional and enhance but are not required for basic service functionality.
  • Cookie Consent: Essential cookies are required for the service to function. Analytics and advertising cookies are optional and can be controlled through our cookie banner.

7. Your Rights

You have the right to:

  • Access your personal information
  • Correct inaccurate information
  • Request deletion of your information
  • Object to processing of your information
  • Request data portability
  • Withdraw consent at any time (where processing is based on consent)
  • Lodge a complaint with a supervisory authority if you believe your rights have been violated

8. Third-Party Services

Our service may integrate with third-party AI and language model providers to process your content. These integrations are governed by strict data processing agreements to ensure your privacy is protected.

9. Automated Processing

Our AI analyzes your resume and provides recommendations to improve it. However, no automated decisions are made about you. All AI-generated suggestions are presented for your review, and you have full control over which recommendations to accept. You can edit all generated content before use.

10. Data Location and International Transfers

All your data is processed and stored in the United States. We do not transfer your personal information internationally.

11. Cookies and Tracking Technologies

We use different types of cookies and tracking technologies:

  • Essential Cookies: Required for authentication, security, and basic service functionality. These do not require consent as they are necessary for the service to function.
  • Analytics Cookies: Google Analytics and similar services to understand user behavior, measure site performance, and improve our services.
  • Advertising Cookies: Google Ads and other advertising networks to display relevant advertisements and measure ad effectiveness.
  • Personalization Cookies: To remember your preferences and customize your experience.

You can control non-essential cookies through our cookie banner, which appears when you first visit our site. You can also manage cookies through your browser settings, though disabling cookies may affect site functionality.

For more information about Google's privacy practices, visit: Google Privacy Policy

12. Advertising and Analytics

To support our free service, we display advertisements and use analytics to improve user experience:

  • Google Ads: We partner with Google to display relevant advertisements. Google may use cookies and other tracking technologies to personalize ads based on your interests and browsing behavior.
  • Google Analytics: We use Google Analytics to understand how users interact with our site, measure performance, and identify areas for improvement.
  • Ad Personalization: Ads may be personalized based on your profile information, usage patterns, and interests. You can opt out of personalized advertising through your Google account settings.

Your Choices:

  • Use our cookie banner to control advertising and analytics cookies
  • Visit Google Ads Settings to control ad personalization
  • Install browser extensions or use browsers with built-in ad blocking
  • Adjust your device's advertising settings (mobile devices)

Data Retention: Advertising and analytics data is retained according to Google's policies, typically 26 months for Google Analytics and up to 18 months for Google Ads data.

13. GDPR Rights Implementation Status

For EU users, the General Data Protection Regulation (GDPR) provides eight fundamental rights. Below is our current implementation status for each right:

  • ✅ Right to Access (Article 15): IMPLEMENTED - You can view and export all your data through the user interface. All information is accessible in human-readable format.
  • ✅ Right to Rectification (Article 16): IMPLEMENTED - All personal data can be edited directly through your profile and settings pages.
  • ✅ Right to Erasure/To Be Forgotten (Article 17): IMPLEMENTED - You can delete your account at any time through Account Settings. Note: Cached data expires after 90 days, and LinkedIn hash is retained for 7 years to prevent abuse.
  • ✅ Right to Restriction of Processing (Article 18): IMPLEMENTED - You control which features you use. You can choose not to upload resumes or use optimization services, effectively restricting processing of that data. Future features requiring selective consent will include granular controls.
  • ⚠️ Right to Data Portability (Article 20): IMPLEMENTED - You can export all your personal data in JSON format through Account Settings. Includes user profile, resume data, and job applications (excludes AI-generated content per GDPR guidelines). This was as of 2025-06-27. Export may not always keep up with features and data being added to the system, but we will endeavor to add export quickly. At this time we are prioritizing getting the new features into your hands and gathering your feedback.
  • ✅ Right to Object (Article 21): IMPLEMENTED - No automated decision-making or profiling is performed. All AI suggestions require your explicit approval. You have full control to edit all exported documents before using them in applications.
  • ✅ Rights Related to Automated Decision Making (Article 22): IMPLEMENTED - We do not make any automated decisions about you. All outputs are suggestions only and you have final edit ability before using any documents.
  • ⚠️ Right to Be Informed (Articles 13 & 14): PARTIALLY IMPLEMENTED - This privacy policy provides transparency, but we haven't yet implemented all required notifications for data processing activities. Transparency note: As a US-based founder, I do not feel I have sufficient expertise to determine full compliance with these nuanced articles without professional legal review.

Beta Status: While we believe we have fully implemented 7 of 8 GDPR rights, we will need to seek expert guidance to be sure. The remaining right (comprehensive data processing notifications per Articles 13 & 14) is more nuanced and we will require professional review before we can feel comfortable making this claim. We are a startup, but remain committed to seeking expert opinion on these matters when resources allow. By using our services during beta, those in a jurisdiction covered by GDPR acknowledge these limitations and voluntarily waive enforcement of these rights.

14. LinkedIn Data Collection and Consent

With your explicit consent, we may collect additional LinkedIn information to enhance our services:

  • Recommendations and Skills: Import endorsements to strengthen your resume
  • Detailed Job History: Use complete work experience for optimization
  • Network Research: Research potential employers and interviewers
  • Profile Updates: Automatically update your LinkedIn with optimized content

You control exactly what LinkedIn data we can access through granular consent options. You may withdraw consent for any category at any time through your account settings.

15. Beta Software Notice

This application is currently in beta testing. While we take privacy seriously, please be aware that beta software may have additional risks. We recommend not including highly sensitive information during the beta period.

16. Contact Us

If you have any questions about this privacy policy, please contact us at:

Email: privacy@humanfirsttalent.com

For GDPR-related inquiries or to exercise your data protection rights, you may also contact your local data protection authority.

17. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the effective date. For material changes, we will provide additional notice through email or prominent website notification.

Human First Talent BETA

AI-powered resume optimization and career management

Legal

Support

© 2025 Human First Talent. All rights reserved.

Beta software - use at your own risk. No warranties provided.