Privacy Policy

Last Updated: December 3, 2025

At InterviewSTAR, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

1. Information We Collect

1.1 Information You Provide

We collect information that you voluntarily provide to us, including:

  • Account Information: Email address, password (encrypted), and name
  • Profile Information: Career milestones, work experiences, achievements, and professional goals
  • Resume Data: When you upload resumes (PDF or DOCX format), we extract and store text content
  • Interview Preparation Content: Questions, answers, feedback, and notes you create
  • Payment Information: Billing name, address, and payment details (processed securely by Stripe)
  • Communications: Messages you send to our support team

1.2 Information Collected Automatically

When you use InterviewSTAR, we automatically collect:

  • Usage Data: Pages visited, features used, time spent on platform, and interaction patterns
  • Device Information: Browser type, operating system, device type, and screen resolution
  • IP Address: Your IP address and approximate geographic location
  • Cookies: Session identifiers and preferences (see Cookie Policy)
  • Authentication Tokens: Secure tokens for maintaining your logged-in session

1.3 Information from Third Parties

  • Google OAuth: If you sign up with Google, we receive your email address and profile name
  • Payment Provider: Stripe provides us with payment status and subscription information

2. How We Use Your Information

We use your information to:

2.1 Provide and Improve Services

  • Create and manage your account
  • Store and organize your career milestones and experiences
  • Parse and analyze your resumes
  • Generate AI-powered STAR format interview answers based on your data
  • Provide personalized interview preparation recommendations
  • Improve our AI models and service quality

2.2 Process Payments

  • Process Pro subscription payments
  • Manage billing and invoicing
  • Prevent fraud and unauthorized transactions

2.3 Communicate with You

  • Send account notifications and service updates
  • Respond to your support requests
  • Send subscription renewal reminders
  • Send marketing emails (only with your consent, and you can opt-out anytime)

2.4 Security and Compliance

  • Detect and prevent fraud, abuse, and security incidents
  • Comply with legal obligations
  • Enforce our Terms of Service

3. How We Share Your Information

We do not sell your personal information. We share your information only in the following circumstances:

3.1 Service Providers

We share data with trusted third-party service providers who help us operate our platform:

  • Supabase: Database and authentication services (stores user data, milestones, experiences)
  • Azure AI / OpenAI: AI processing for generating interview responses (we share your career data to generate personalized content)
  • Stripe: Payment processing (receives billing information, processes subscriptions)
  • Cloud Storage: Resume file storage (encrypted at rest)

All service providers are contractually obligated to protect your data and use it only for providing services to us.

3.2 Legal Requirements

We may disclose your information if required to:

  • Comply with legal obligations, court orders, or government requests
  • Enforce our Terms of Service or protect our rights
  • Protect the safety and security of our users or the public
  • Prevent fraud or investigate suspected illegal activity

3.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity. We will notify you before your information becomes subject to a different privacy policy.

4. Data Storage and Security

4.1 Where We Store Your Data

  • User data is stored in secure databases provided by Supabase
  • Resume files are stored in encrypted cloud storage
  • Payment data is stored by Stripe (PCI DSS compliant)
  • Data may be processed in multiple regions for service delivery

4.2 How We Protect Your Data

  • Encryption of data in transit (HTTPS/TLS)
  • Encryption of sensitive data at rest
  • Secure password hashing (bcrypt)
  • Regular security audits and updates
  • Access controls and authentication
  • Secure API endpoints with rate limiting

However, no method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

4.3 Data Retention

  • Active Accounts: We retain your data as long as your account is active
  • Deleted Accounts: Most data is deleted within 30 days of account deletion
  • Legal Requirements: Some data may be retained longer to comply with legal obligations
  • Backups: Backup copies may persist for up to 90 days after deletion

5. Your Privacy Rights

Depending on your location, you may have the following rights:

5.1 Access and Portability

  • Request a copy of your personal data
  • Export your data in a machine-readable format
  • Access your account information through your profile settings

5.2 Correction and Update

  • Update your profile information at any time
  • Request correction of inaccurate data
  • Edit or delete milestones and experiences

5.3 Deletion (Right to be Forgotten)

  • Delete your account and associated data through account settings
  • Request complete data deletion (subject to legal retention requirements)

5.4 Opt-Out of Marketing

  • Unsubscribe from marketing emails via the link in any email
  • Manage email preferences in account settings

5.5 Object to Processing

  • Object to certain types of data processing
  • Withdraw consent for optional features

6. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. By using InterviewSTAR, you consent to the transfer of your information to these countries.

For EU users: We implement appropriate safeguards (such as Standard Contractual Clauses) when transferring data outside the European Economic Area.

7. Children's Privacy

InterviewSTAR is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If we discover that we have collected data from a child, we will delete it promptly. If you believe we have collected information from a child, please contact us immediately.

8. Cookies and Tracking Technologies

We use cookies and similar technologies to provide and improve our service. For detailed information about our use of cookies, please see our Cookie Policy.

9. Third-Party Links

Our Service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal information.

10. AI Processing Disclosure

We use artificial intelligence (powered by Azure AI and OpenAI) to analyze your career data and generate interview preparation content. This involves:

  • Sending your milestones, experiences, and resume data to AI services
  • Processing this data to generate personalized STAR format answers
  • Storing AI-generated content in our database

Our AI partners are contractually bound to protect your data and not use it to train their models without explicit permission.

11. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act:

  • Know what personal information we collect and how we use it
  • Request deletion of your personal information
  • Opt-out of the sale of your personal information (we do not sell your data)
  • Non-discrimination for exercising your privacy rights

To exercise these rights, contact us at privacy@interviewstar.com.

12. European Privacy Rights (GDPR)

If you are in the European Economic Area, you have rights under the General Data Protection Regulation:

  • Right to access your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent
  • Right to lodge a complaint with a supervisory authority

Legal basis for processing: We process your data based on contract performance (providing our service), legitimate interests (improving our service), and your consent (for marketing communications).

13. India-Specific Disclosures

For users in India:

  • We collect billing address and phone number for GST compliance
  • Payment data includes GST registration details when applicable
  • Data may be stored on servers located outside India
  • You have the right to access, correct, and delete your personal data

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the updated policy on this page
  • Updating the "Last Updated" date
  • Sending an email notification for significant changes

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

15. Contact Us

If you have questions about this Privacy Policy or want to exercise your privacy rights, please contact us:

InterviewSTAR Privacy Team

Email: privacy@interviewstar.com

Support: support@interviewstar.com

By using InterviewSTAR, you acknowledge that you have read and understood this Privacy Policy.

Terms of ServiceCookie PolicyRefund Policy