privacy.

• Account data: your email address. We use it as your login (via 6-digit OTP), to send daily recaps and interview prep notifications, and as the address billing receipts go to.
• Résumé content: the PDF you upload, the structured JSON we extract from it, and any tailored variants we produce per job application. Used to match jobs, generate cover letters, and submit applications.
• Preferences: target job titles, locations, salary floor, deal-breakers, weekly application cap, sponsorship status. Used to filter the job-matching pipeline.
• LinkedIn URL(optional): used only to enrich your profile. We don't scrape your LinkedIn or store credentials. Your LinkedIn password never touches Kyndro.
• Application records: which jobs we shortlisted, which we submitted to, status updates from the employer (interview, rejection, offer), and Interview Rescue briefs we generated.
• Payment metadata(only if you subscribe): Pesapal sends us a transaction reference and status. Card numbers and CVVs never touch Kyndro's servers — those go directly to Pesapal's PCI-compliant infrastructure.
• Browser storage: we keep a short JWT and your email in localStorage so you stay signed in. We do not use third-party tracking cookies.

Your résumé and preferences are processed to:

• Score open jobs against your profile (the match scoring engine).
• Tailor the résumé and draft cover letters per job using a large language model (see Third Parties below).
• Submit applications on your behalf via your installed browser extension or a server-side worker.
• Generate Interview Rescue briefs when an employer responds.
• Send you a daily recap email of what was applied and what came back.

We do not sell your data. We do not share it with advertisers. We do not train external models on your résumé.

• Alibaba Cloud (Qwen / DashScope):the language model that performs résumé tailoring, cover letter drafting, ATS scoring, and Interview Rescue briefs. We send the relevant slice (résumé JSON + job description). Per Alibaba's API terms, inputs to DashScope are not used to train future models.
• Pesapal (regulated by the National Bank of Rwanda):processes subscription card payments. We send order metadata (amount, your name and email, billing address you provide). Card details go directly to Pesapal's PCI-compliant form — Kyndro never sees them.
• Resend: sends your transactional emails (welcome, daily recap, interview prep). Receives your email address and message body.
• Job board APIs (Adzuna, RemoteOK, public Greenhouse / Lever boards): we read public job listings. We do not transmit your data to them; the data flow is one-way (in).
• LinkedIn / Greenhouse / Lever submissions:when you authorize an application, your résumé and answers are submitted to the employer's posting page using your authenticated session. The employer then holds that data under their own privacy policy.

• Account, résumé, applications, Interview Rescue briefs: retained while your account is active.
• If you delete your account (Settings → Danger zone), we drop your row and cascade the delete through candidate, application, and brief tables. This is irreversible — we don't keep deleted-user backups.
• Backups: encrypted DB backups for disaster recovery, retained 30 days, then rotated.
• Server logs containing no résumé content: 30 days for debugging, then deleted.

You can, at any time:

• Access all data we hold about you — visit Settings → Export, or email us.
• Correct any inaccurate data — Settings lets you edit your profile, résumé content, and preferences directly.
• Delete your account and all associated data — Settings → Danger zone → Delete account. Effective immediately.
• Object to specific processing or withdraw consent — pause the agent in Settings, or contact us.

EU/UK residents: these rights are guaranteed under GDPR / UK GDPR. We respond within 30 days. Rwandan users: rights under the Data Protection and Privacy Law (Law No. 058/2021) of Rwanda apply.

• Transport: all traffic uses TLS (HTTPS). Pesapal checkout iframe is PCI DSS certified.
• At rest: production database is encrypted at rest by the managed provider.
• Authentication: passwordless OTP, signed JWTs, no shared secrets in the codebase.
• We will notify affected users within 72 hours of any confirmed breach.

Privacy questions, deletion requests, or data exports: email general@kyndro.app. Operator: Kyndro.