Privacy Policy

Last Updated: June 25, 2026

This Privacy Policy explains how Link & Tailor (the "Service") collects, uses, shares, and protects information. The Service is operated by Gavin English, a sole proprietor ("Company," "we," "us," "our"). By using the Service, you agree to this Privacy Policy.

---

1. Information We Collect

A. Information You Provide

• Name
• Email address
• Account credentials (password is stored only as a secure hash)
• Profile content you enter or import (work history, education, certifications, skills, summary)
• Resume files or LinkedIn data export files you upload for profile import. These files are used to extract profile fields and are not intentionally retained after processing.
• Job posting URL(s) you submit for processing

B. Information Collected Automatically

• IP address
• Device and browser metadata
• Log data (timestamps, basic usage and error logs)
• Approximate location inferred from IP (city/state-level at most)

C. Payment Information (Stripe Checkout)

Payments are processed by Stripe. We do not collect or store your credit card number, CVV, or full payment credentials. We may receive limited payment-related metadata from Stripe such as a Stripe customer ID, checkout session ID, payment status, and the purchased product/credit package.

2. How We Use Your Information

We use your information to:

• Create and maintain your account
• Generate resumes/cover letters and produce PDF downloads
• Track and deduct credits
• Provide customer support and respond to requests
• Detect, prevent, and investigate fraud, abuse, or security incidents
• Maintain and improve the reliability and performance of the Service
• Comply with legal, tax, and accounting requirements

3. AI Processing

To generate outputs, the Service transmits relevant user-provided content (such as your profile fields and job description text) to AI processing providers. These providers process data to return generated text. We do not knowingly sell your personal information.

We may store generated documents and/or generation logs to provide the Service, troubleshoot issues, prevent abuse, and support auditability.

4. What We Do Not Do

• We do not sell your personal information.
• We do not store your card number or CVV.
• We do not store your password in readable form, and we cannot retrieve it.
• We do not attempt to "log in as you" using your password.

5. Sharing of Information

We may share information only as needed to operate the Service, including:

• Service providers: hosting, infrastructure, logging, and security tooling
• Stripe: payment processing and fraud prevention
• AI providers: for generation processing
• Legal compliance: if required by law, subpoena, or valid legal process
• Protection: to protect our rights, users, and the integrity of the Service

6. Data Retention

We retain your account and profile information while your account is active. You may request deletion of your account. We may retain limited information as required to:

• Comply with legal, tax, and accounting obligations
• Resolve disputes
• Enforce these policies
• Prevent fraud and abuse

7. Security

We use reasonable administrative, technical, and organizational safeguards designed to protect information. However, no system is 100% secure. You use the Service at your own risk.

8. Your Rights (Global Summary)

Depending on your location, you may have rights to access, correct, delete, or export your personal information, and to object to or restrict certain processing. To make a request, contact us using the email below.

California (CCPA/CPRA)

• Right to know what personal information we collect and how it’s used
• Right to delete (subject to exceptions)
• Right to non-discrimination for exercising privacy rights
• We do not sell personal information

European Economic Area / UK (GDPR/UK GDPR)

If you are in the EEA/UK, we generally process your data under the legal bases of contract performance (to provide the Service), legitimate interests (security and improvement), compliance with legal obligations, and consent where required.

9. International Data Transfers

The Service is operated from the United States. If you access the Service from outside the U.S., you understand and consent that your information may be transferred to and processed in the United States.

10. Children’s Privacy

The Service is not intended for individuals under 18. We do not knowingly collect personal information from children.

11. Third-Party Links and Websites

The Service may process job posting URLs that point to third-party websites. We are not responsible for the privacy practices or content of third-party sites.

12. Business Transfers

If the Service is involved in a merger, acquisition, restructuring, or sale of assets, your information may be transferred as part of that transaction.

13. Changes to This Policy

We may update this Privacy Policy from time to time. The “Last Updated” date reflects the latest version. Your continued use of the Service after changes means you accept the updated policy.

14. Contact

Privacy inquiries and requests: linkandtailor@gmail.com