What we collect
- Email + display name (account creation).
- Your resume PDF (stored privately in Supabase Storage, owner-RLS).
- Parsed resume fields (role, years, tech stack, projects).
- Compute / browse metadata: matches, applications, DSA progress.
DPDP Act 2023 compliant
Privacy
Last updated: 1 May 2026. India's DPDP Act 2023 applies to every interaction.
Granular consent
We never bundle consents. You pick per-purpose: account, AI matching, digest emails, anonymous analytics. You can revoke any of them anytime from Settings → Privacy.
Your rights
- Access — export every byte we hold about you as a single ZIP.
- Erasure — one-click deletion of profile, resume, matches. Audit-log entry retained per DPDP §11.
- Correction — edit your resume + profile at any time.
- Grievance — written reply within 7 days of request.
What we don't do
- We don't sell your data. Ever.
- We don't share resumes with the 18 companies we track.
- We don't use your resume content to train models.
- We don't log resume text, parsed fields, or auth tokens.
LLM processing
Resume parsing + match explanations use third-party LLM providers (Google Gemini, Groq, OpenRouter, and others, depending on availability). Inference is per-request and ephemeral — providers don't retain your data under our enterprise agreements.
Grievance Officer
Email grievance@prodmatchai.in with your concern. We respond within 7 working days.