Zen CV
Legal / Privacy
Privacy Policy
Last updated: 18 April 2026
Zen CV ("the Service") is committed to protecting your privacy. This policy explains what data we process, how we use it, and the choices available to you.
1. Data We Collect
| Data Type | Purpose | Retention |
|---|---|---|
| Name, email, phone, location | Generate your CV | Deleted after generation |
| Work experience, education, skills | Generate your CV | Deleted after generation |
| Uploaded CV file (PDF / DOCX / TXT) | Parse existing CV data | Temporarily stored only long enough to parse the upload, then deleted |
| Payment information | Process payment | Handled entirely by Stripe; we never see or store card details |
| Download token / payment session reference | Authorize PDF download after payment | Kept in server memory for a short time, then discarded or expired |
2. How We Use Your Data
Your data is used only to:
- Generate CV documents based on information you provide
- Process your payment via Stripe
- Serve the generated PDF to your browser for download
We do not:
- Sell, rent, or share your personal data with third parties
- Use your data for marketing purposes
- Use your CV content to train AI models
- Create user profiles or track activity across sessions
- Store your data after service delivery
3. Third-Party Services
a) Stripe (Payment Processing)
- Payment is processed by Stripe, Inc.
- We never receive or store your credit card number, CVV, or full card details.
- Stripe's privacy policy: stripe.com/privacy
b) AI Processing
- Your CV content may be sent to third-party AI API providers configured for the Service for parsing, content enhancement, and design generation.
- The specific provider may change over time. Provider handling of API data is governed by that provider's own terms and privacy policy.
- We configure the Service to use API-style processing rather than public chatbot interfaces, but third-party processing still occurs whenever you use AI features.
4. Data Security
- All data transmission is encrypted via HTTPS / TLS.
- Uploaded files may be written to short-lived temporary server storage during processing and are deleted afterwards.
- The generated PDF is created on demand and is not retained server-side after delivery.
- We do not maintain a user database or persistent data store for CV content.
5. Your Choices and Rights
Depending on where you live, you may have legal rights regarding personal data. In practice, because we do not keep long-term CV records, those rights are limited by the short-lived nature of the processing. You can always contact us to:
- Ask what data we still hold — if any short-lived records remain at the time of your request.
- Request correction or deletion — where technically possible before that data expires or is deleted.
- Withdraw from using the Service — by stopping use at any time.
To exercise any of these rights, contact us at [email protected].
6. Cookies
The Service itself does not use analytics or advertising cookies. Third-party services involved in payment or infrastructure may set their own cookies or similar technologies as part of providing their service.
- We do not use Google Analytics, Meta Pixel, or similar marketing trackers on the site.
- Stripe or other service providers may use cookies or similar technologies on their own pages or embedded components.
7. Children's Privacy
The Service is not intended for individuals under 18 years of age. We do not knowingly collect data from minors.
8. International Data Transfer
Your data may be processed by servers located outside your country or region, including by payment processors and AI API providers. By using the Service, you understand that such cross-border processing may occur. Data in transit is protected by encryption, and third-party handling is governed by the relevant provider's own commitments.
9. Data Breach Notification
In the unlikely event of a security incident affecting personal data we control, we will take reasonable steps to investigate, contain, and respond to it, including notification where required by applicable law.
- Investigate the scope and impact of the incident
- Take steps to contain and remediate the issue
- Notify affected individuals or authorities where legally required and reasonably possible
10. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. Continued use of the Service constitutes acceptance of the updated policy.
11. Contact Us
For privacy-related questions or concerns, email [email protected].
This policy describes the Service's current data-handling practices and may be updated as the product evolves.