Privacy Policy

QREDGE — AI-Powered Job Application Platform

1. Introduction

QREDGE ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our AI-powered job application platform.

2. Information We Collect

2.1 Account Information

• Name and email address (via Google OAuth or email registration)
• Profile information you voluntarily provide

2.2 CV / Resume Data

• Uploaded PDF resumes and extracted text
• Parsed skills, experience, and qualifications

2.3 Job Application Data

• Job descriptions you submit for analysis
• Generated cover letters and tailored CVs
• Application history and status tracking

2.4 Email Connection Data

• Gmail OAuth tokens (encrypted at rest with AES-256-GCM)
• Sent email metadata (recipients, timestamps, open tracking)

2.5 Usage Data

• Credit consumption and download history
• Feature usage analytics (anonymized)

3. How We Use Your Information

• AI Analysis: To parse job descriptions, extract requirements, and generate tailored application materials using Google's Gemini API.
• Email Delivery: To send job applications on your behalf via connected Gmail accounts.
• Job Matching: To score and match scraped job listings against your CV profile.
• Application Tracking: To monitor email opens, replies, and application status.
• Account Management: To manage credits, subscriptions, and billing.

4. Data Storage & Security

• All data is stored in MongoDB databases with access restricted to authorized services.
• Gmail OAuth tokens are encrypted at rest using AES-256-GCM.
• Session cookies are httpOnly and secure in production.
• We use industry-standard TLS for all data in transit.

5. Third-Party Services

• Google Gemini API: Used for AI text generation. Data is processed under Google's AI privacy terms.
• Google Gmail API: Used only with your explicit consent to send job application emails.
• MongoDB Atlas: Cloud database hosting.

6. Your Rights

• Access, update, or delete your profile data at any time via the Settings page.
• Revoke Gmail OAuth access at any time via Settings → Email Connections.
• Request complete account deletion by contacting support.

7. Data Retention

We retain your data for as long as your account is active. Upon account deletion, all personal data is permanently removed within 30 days.

8. Contact Us

For privacy-related questions or requests, contact us at: support@quaxt.co.ke

Terms of Service

Last updated: May 15, 2026