← Back to CareerLedger

Privacy Policy

Last updated: June 2026

CareerLedger ("we," "us," or "our") helps candidates build a structured career profile, capture career stories, tailor resumes, create role-specific share links, and let visitors chat with an AI assistant grounded in the candidate's career data. This Privacy Policy explains what information we collect, how we use it, who we share it with, and what controls are available to you.

If you do not agree with this policy, please do not use CareerLedger.

1. Information We Collect

We collect information you provide directly, information generated while using the product, and limited technical data needed to operate the service.

  • Account information - Name, email address, profile image, password hash if you use email/password login, OAuth account details, session records, and linked account tokens needed for Google or GitHub sign-in and GitHub sync.
  • Career profile data - Your headline, bio, uploaded resume, parsed resume text, LinkedIn export data, manually entered work history, target roles, preferred locations, skills, education, projects, strengths, weaknesses, aspirations, and AI-generated profile summaries that you review or edit.
  • LinkedIn data - When you upload a LinkedIn data export, we store the experiences, education, skills, and raw uploaded data needed to build your profile.
  • GitHub data - If you connect and sync GitHub, we collect your GitHub username, bio, avatar URL, public repository count, followers, languages, top repositories, and contribution summary.
  • Voice, chat, and story data - Career-story interview messages, onboarding answers, context dumps, follow-up responses, transcripts, work-role notes, accomplishment stories, and related audio URLs when an audio recording is uploaded and stored.
  • Resume and job-application data - Base resumes, resume PDFs, parsed resume text, job descriptions, matched job records, ATS keywords, relevance scores, tailored resume drafts, resume version history, application status, evidence gaps, and exported resume content.
  • AI chat links and assistant content - Link names, slugs, modes, custom prompts, job-description context, tailored resume share context, public resume settings, visitor conversations, visitor messages, assistant responses, reports, blocked visitor identifiers, and notification preferences.
  • Visitor information - Visitors to public AI chat links or embedded widgets may have a browser-generated visitor ID, conversation ID, message history, timestamps, rate-limit counts, report details, and optional attached document text processed for chat context.
  • Consent and settings data - Consent choices, consent audit history, IP address recorded with consent changes where available, account deletion requests, notification settings, workflow preferences, and billing or usage-admin settings.
  • Usage and provider-cost data - API provider, model, feature, operation, status, request ID, token counts, audio duration, email count, estimated or provider-reported cost, timestamps, and related metadata used to monitor reliability and cost.

2. How We Use Information

  • Create, authenticate, secure, and maintain your account.
  • Import or sync career data from resumes, LinkedIn exports, GitHub, manual entry, voice recordings, and chat responses.
  • Generate structured profiles, follow-up questions, career stories, role coverage, resume tailoring, job-description parsing, keyword extraction, job matching, and AI assistant responses.
  • Power public share links, embedded widgets, visitor chat sessions, conversation history, rate limiting, reporting, and blocking tools.
  • Provide analytics to candidates, including conversation counts, message history, question summaries, gap detection, usage limits, and API cost views.
  • Send transactional emails such as password reset messages and product notifications based on your notification preferences.
  • Maintain consent records, exports, deletion workflows, auditability, security controls, troubleshooting, and service reliability.

3. AI Processing

CareerLedger uses AI providers to process career data, generate profile and resume outputs, transcribe audio, and answer visitor questions. Prompts may include the information needed for the feature you are using, such as resume text, LinkedIn work history, GitHub summaries, career-story transcripts, job descriptions, chat messages, and document text a visitor attaches to a chat. We send only the context needed for the requested feature.

AI-generated content can be incomplete or incorrect. You remain responsible for reviewing profile data, AI chat links, resume outputs, and public AI assistant answers before relying on or sharing them.

4. Sharing and Service Providers

We do not sell personal data. We share information with service providers only as needed to operate CareerLedger:

  • Database hosting - CareerLedger stores application data in a PostgreSQL database, currently configured for Neon-compatible hosting.
  • Object storage - Resume PDFs and uploaded audio files are stored in S3-compatible object storage such as AWS S3, Cloudflare R2, or MinIO, depending on deployment configuration.
  • AI and transcription - LLM and speech-to-text requests are routed through OpenRouter using the configured model for chat, resume, profile, moderation, job, and transcription features.
  • Authentication providers - Google and GitHub may process information when you sign in or connect an account through those providers.
  • GitHub API - If you sync GitHub, we use your GitHub access token to fetch your profile and repository data.
  • Job data providers - Job search and job-matching features may use Apify to fetch public job postings based on your target roles and location preferences.
  • Email delivery - Resend is used to send transactional email such as password reset messages.
  • Usage analytics - PostHog may receive API usage events when usage tracking is enabled for a deployment. These events are used for provider usage, reliability, and cost monitoring.
  • Billing - CareerLedger is currently configured as early access with all features included. Historical subscription fields may exist in the system, but the current app does not collect payment card details directly.

We may also disclose information if required by law, to enforce our Terms, to protect rights and safety, or in connection with a merger, acquisition, financing, or sale of assets.

5. Public Sharing and Visitors

When you create a public AI chat link, embed, job-application link, or tailored resume share link, visitors can interact with an AI assistant grounded in the data you choose to make available through that link. Depending on your settings, a link may include profile context, job-description context, tailored resume context, public resume content, custom instructions, and AI assistant responses generated from your career data.

Candidates can review visitor conversations and analytics for their own links. Visitors should not submit sensitive personal information in AI chat messages or document attachments unless they are comfortable sharing it with the link owner and with the AI systems used to answer the chat.

6. Your Choices and Controls

You can manage several privacy controls in Settings:

  • Consent controls - You can grant or revoke consent for LinkedIn data usage, GitHub data usage, analytics tracking, and AI processing. Revoking LinkedIn or GitHub consent deletes the imported LinkedIn or GitHub profile data from your account.
  • Access and export - You can export account, profile, LinkedIn, GitHub, structured profile, context dump, AI chat link, conversation, workflow preference, and consent data in JSON format.
  • Correction - You can edit profile sections, rebuild profile data, update settings, disconnect accounts, and replace or revise career information.
  • Link controls - You can create, edit, deactivate, or delete AI chat links and manage notification overrides for those links.
  • Account deletion - You can request account deletion from Settings. AI chat links are deactivated immediately. Your account is scheduled for permanent deletion after a 30-day grace period, and you can cancel the deletion during that period.

7. Retention

  • Account and profile data - Retained while your account is active, unless you delete or replace specific data or request account deletion.
  • Resume and job data - Retained while your account is active so we can provide resume tailoring, version history, job matching, and application workflows.
  • AI chat conversations - Retained for link history, analytics, rate limiting, abuse reporting, and candidate review until deleted with the account or related link data.
  • Audio and transcripts - Transcripts and saved audio URLs are retained as part of profile, onboarding, or story data unless you delete the related data or account. Some transcription flows process the audio file directly without creating a separate stored app file record.
  • Usage logs - API usage ledger and provider-cost events are retained for operations, billing analysis, abuse prevention, debugging, and auditability.
  • Deletion grace period - When you request account deletion, your data remains recoverable for 30 days. After that period, the account record is permanently deleted, and related database records are deleted through cascading relationships where configured.

8. Cookies and Browser Storage

  • Authentication cookies - We use Auth.js/NextAuth cookies to keep signed-in users authenticated and to protect authentication flows.
  • Chat localStorage - Public chat and embed surfaces use browser localStorage keys such as chatbot-visitor-id and chatbot-session-<linkSlug> to remember a visitor ID and active conversation for up to 24 hours.
  • Embed consent storage - Embedded widgets may store chatbot-consent in localStorage and cl_embed_consent as a cookie to remember the visitor's consent choice.

For more details, please see our Cookie Policy.

9. Security

We use access controls, authentication, password hashing, provider tokens, database relationships, rate limits, content moderation, report/blocking flows, and service-provider controls to help protect data. No internet service can be guaranteed completely secure, so please use a strong password, protect your login methods, and avoid submitting unnecessary sensitive information.

10. International Transfers

CareerLedger and its service providers may process information in the United States, India, the European Union, or other jurisdictions depending on deployment and vendor configuration. Where required, we rely on appropriate safeguards for cross-border processing.

11. Children's Privacy

CareerLedger is not intended for individuals under 16. We do not knowingly collect personal data from children under 16. If you believe a child has provided personal data, please contact us so we can take appropriate action.

12. Changes to This Policy

We may update this policy as the product, vendors, or legal requirements change. When we make material changes, we will update the "Last updated" date and, where appropriate, notify users through the app or by email.

13. Contact Us

If you have questions or requests about this Privacy Policy or your personal data, please contact us at:

CareerLedger
Email: privacy@careerledger.com