Chazle logo

Privacy Policy

Effective Date: September 9, 2025

Last Updated: September 9, 2025

1. Introduction

Chazle ("we," "us," or "our") operates the Chazle interview assistance service ("Service"). This Privacy Policy explains how we collect, use, and protect your personal information when you use our real-time interview assistance tool, including our native application as well as Chrome extension.

Important: Given the sensitive nature of interview data, we are committed to maintaining the highest standards of data protection and user privacy.

2. Information We Collect

2.1 Account Information

  • Registration Data: Email address, username, password (encrypted)
  • Profile Information: Name, professional background (optional)
  • Subscription Data: Payment information, billing address, subscription status

2.2 Interview Session Data

  • Session Metadata: Session duration, timestamp, technical settings
  • Interview Content: Questions asked, responses provided, assistance given
  • Performance Data: Response accuracy, areas of difficulty (anonymized)
  • Technical Data: Screen content analysis (processed locally when possible)
  • Audio Data: When live captions are enabled, audio from your shared tab/system audio is processed in your browser and streamed to Deepgram for speech recognition

2.3 Chrome Extension Data

  • Job Descriptions: Highlighted job descriptions you select are read and sent to our backend
  • Job Tracking: Company names and job titles you optionally enter
  • Job Records: Job rows you choose to record for your own tracking
  • Generated Files: DOCX/PDF files downloaded via our domain

2.4 AI Processing Data

  • Prompts and Responses: Request text sent to OpenAI for generating AI answers and tailored resumes
  • Profile Content: Your provided profile information used in AI processing
  • Job Description Content: Job descriptions used for resume tailoring

2.5 Usage Analytics

  • Service Interaction: Features used, frequency of use, user preferences
  • Usage Limits: Tracking to enforce limits per membership tier
  • Technical Performance: Response times, error rates, system performance
  • Device Information: Operating system, browser type, IP address
  • Cookies and Tracking: Service functionality and analytics data

2.6 Communications

  • Support Messages: Correspondence with our customer service team
  • Feedback: User surveys, feature requests, bug reports

3. How We Use Your Information

3.1 Core Service Provision

  • Interview Assistance: Providing real-time help during interview sessions
  • Live Captions: Processing audio to provide automatic speech recognition
  • AI Assistance: Generating answers and tailored resumes based on your inputs
  • Content Processing: Analyzing interview questions to generate relevant assistance
  • Personalization: Customizing assistance based on your skill level and needs
  • Performance Improvement: Learning from interactions to provide better assistance

3.2 Service Operations

  • Account Management: Creating and maintaining user accounts
  • Usage Enforcement: Tracking and enforcing usage limits per membership tier
  • Payment Processing: Processing payments and managing subscriptions
  • Authentication: Verifying user identity and preventing unauthorized access
  • Customer Support: Responding to inquiries and resolving technical issues
  • Security: Detecting and preventing fraud, abuse, and security threats
  • Service Improvement: Improving reliability, detecting misuse, and supporting users

3.3 Analytics and Improvement

  • Service Enhancement: Improving our algorithms and user experience
  • Performance Monitoring: Ensuring service reliability and optimal performance
  • Research: Understanding interview trends and common challenges (anonymized data only)

3.4 Legal Basis for Processing (GDPR)

  • Contract: To provide the interview assistance service you've requested
  • Legitimate Interest: To improve our service and prevent misuse
  • Consent: For marketing communications and optional features
  • Legal Compliance: To comply with applicable laws and regulations

4. Information Sharing and Disclosure

4.1 We Do Not Sell Your Data

We never sell, rent, or trade your personal information to third parties for marketing purposes.

4.2 Limited Sharing

We may share your information only in the following circumstances:

  • Service Providers:
    • Cloud hosting, email, and marketing services (Hostinger, AWS, Google Cloud) with strict data processing agreements
    • Payment processors (Stripe) for subscription management and payment
    • Twilio/SendGrid for account and email authentication
    • Deepgram for automatic speech recognition (ASR) - we send short audio frames for transcription
    • OpenAI for generating AI answers and tailored resumes - we send prompts that may include your profile and job descriptions
    • Large language model providers (including Gemini, Anthropic) for real-time interview assistance
    • Analytics providers (with anonymized data only)
  • Legal Requirements: When required by law, court order, or government request; to protect our rights, property, or safety, or that of our users; to enforce our Terms of Service
  • Business Transfers: In connection with mergers, acquisitions, or asset sales (with user notification)

4.3 Interview Data Protection

  • Special Protections for Interview Content:
  • Interview session data is processed with enhanced security measures
  • Content is automatically deleted after 30 days unless you opt for longer retention
  • No interview content is shared with third parties except as required by law
  • We implement technical measures to minimize data exposure during processing

5. Data Retention and Deletion

5.1 Retention Periods

  • Account and membership records: Retained while your account is active or as required by law
  • Interview Sessions: Deleted after 30 days by default (configurable up to 1 year)
  • Usage counters: Retained to enforce limits and for billing records
  • Job records (your Jobs page): Retained until you delete them
  • Generated files: Stored under your account; you may delete or regenerate them at any time
  • Usage Analytics: Anonymized data retained for up to 2 years
  • Support Communications: Retained for up to 3 years

5.2 Automatic Deletion

  • Interview content is automatically purged according to your retention settings
  • Inactive accounts are automatically deleted after 2 years of inactivity
  • You can request immediate deletion of your data at any time

6. Your Rights and Controls

6.1 Account Controls

  • Access: Download a copy of your personal data
  • Correction: Update or correct your account information
  • Deletion: Delete your account and associated data, including job records and generated files
  • Portability: Export your data in a structured format

6.2 Privacy Controls

  • Session Recording: Choose whether to save interview sessions
  • Live Captions: Enable or disable audio processing for captions
  • Data Retention: Set custom retention periods for your data
  • Analytics: Opt out of anonymized usage analytics
  • Marketing: Control email communications and notifications

6.3 GDPR Rights (EU Users)

  • Right to Information: Understand how your data is processed
  • Right of Access: Obtain copies of your personal data
  • Right to Rectification: Correct inaccurate personal data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Limit how we process your data
  • Right to Data Portability: Transfer your data to another service
  • Right to Object: Object to processing based on legitimate interests
  • Rights Related to Automated Decision Making: Information about algorithmic decisions

6.4 CCPA Rights (California Users)

  • Right to Know: Details about data collection and use
  • Right to Delete: Request deletion of personal information
  • Right to Opt-Out: We don't sell data, but you can opt out of sharing for business purposes
  • Right to Non-Discrimination: Equal service regardless of privacy choices

7. Data Security

7.1 Technical Safeguards

  • Encryption: All data encrypted in transit (TLS 1.3/HTTPS) and at rest (AES-256)
  • Access Controls: Multi-factor authentication and role-based access with least-privilege practices
  • Network Security: Firewalls, intrusion detection, and monitoring
  • Regular Updates: Security patches and vulnerability assessments

7.2 Operational Safeguards

  • Employee Training: Regular security and privacy training for all staff
  • Data Minimization: We collect only data necessary for service provision
  • Incident Response: Procedures for detecting and responding to security breaches
  • Third-Party Audits: Regular security assessments by external experts

7.3 Interview-Specific Security

  • Local Processing: Screen analysis performed locally when technically feasible
  • Ephemeral Processing: Interview data processed in memory and not permanently stored during sessions
  • Stealth Technology: Designed to minimize data exposure during screen sharing

7.4 Third-Party Security

Third-party processors (Stripe, Deepgram, OpenAI) operate their own secure infrastructure. No system is 100% secure; please use strong passwords and protect your devices.

8. International Data Transfers

8.1 Data Locations

  • Primary servers located in the United States
  • EU users' data may be processed in EU data centers when available
  • All transfers comply with applicable data protection laws

8.2 Transfer Safeguards

  • Standard Contractual Clauses: For transfers outside the EU
  • Adequacy Decisions: Transfers to countries with adequate protection
  • Binding Corporate Rules: Internal data transfer protocols

9. Children's Privacy

Our Service is not intended for users under 18. We do not knowingly collect personal information from minors. If we discover we have collected information from a minor, we will promptly delete it and terminate the associated account.

10. Cookies and Tracking Technologies

10.1 Types of Cookies

  • Essential: Required for service functionality (authentication, security, session management)
  • Functional: Remember your preferences and settings
  • Analytics: Understand service usage and performance (anonymized)
  • Security: Detect and prevent fraudulent activity

10.2 Cookie Management

We use cookies for session management and authentication. You can control cookies through browser settings, but disabling essential cookies may affect service functionality. Blocking cookies may limit app functionality. See our separate Cookie Policy for detailed information.

11. Third-Party Services

Our service may integrate with third-party platforms (video conferencing, coding platforms). These integrations are designed to be privacy-preserving, but we encourage you to review the privacy policies of any platforms you use during interviews.

12. Data Breach Notification

In the event of a data breach that poses a risk to your privacy:

  • We will notify affected users within 72 hours of discovery
  • We will provide details about the breach and steps we're taking
  • We will offer guidance on protective measures you can take
  • We will report to relevant authorities as required by law

13. Privacy Policy Changes

13.1 Notification of Changes

  • Email notification to registered users
  • Prominent notice on our website
  • In-app notifications

13.2 Consent to Changes

Continued use of the Service after changes constitutes acceptance. For material changes affecting data processing, we may require explicit consent.

14. Contact Information

14.1 General Privacy Questions

Email: hi@chazle.com
Subject Line: Privacy Inquiry

14.2 Data Protection Officer (EU Inquiries)

Email: hi@chazle.com
Subject Line: GDPR Request

14.3 California Privacy Rights

Email: hi@chazle.com
Subject Line: California Privacy Request

14.4 Data Subject Requests

For exercising your privacy rights, please email us with your request details: hi@chazle.com
Response Time: We will respond to privacy requests within 30 days (or as required by applicable law).

This Privacy Policy demonstrates our commitment to protecting your privacy while providing effective interview assistance. We encourage you to contact us with any questions or concerns about our privacy practices.

v202509100915