Privacy Policy

What data we store

When you sign in with Google, dcrlx receives and stores your email address, name, profile picture URL, and Google account ID (the opaque sub identifier). We do not request, read, or store your Gmail, Calendar, Drive, or any other Google content as part of the sign-in flow.

If you subscribe, Stripe processes the payment. We store the resulting Stripe customer id, subscription id, status, current-period end, and tier. Card details never touch dcrlx servers — they go directly to Stripe.

For features you actively use (job search, applied/rejected tracking), we store the actions you take within the product: jobs you save, applications you mark, filters you set.

What we do not store

• Your Google password or any other credential
• The contents of your inbox, calendar, or files
• Any data from your computer outside the product
• Marketing trackers from third-party networks

Who we share data with

Operational sub-processors only:

• Google Cloud (europe-west1) — hosting + database
• Stripe — payment processing
• OpenAI / Anthropic — when you use AI features, the job descriptions you analyse are sent to the relevant model provider. Profile and contact data are not.

We do not sell data and do not run advertising networks.

Retention & deletion

Your account data persists while your account is active. To delete it, email alex.sirghie.dev@gmail.com from the address tied to the account — we will remove the users row, your profiles, and any saved jobs within 7 days. Stripe records are kept for the period mandated by EU tax law (10 years), as required by Romanian and EU regulation.

Your rights (GDPR)

You may request access to, correction of, or deletion of your data at any time via the email above. We will respond within 30 days.

Cookies

We set a single signed session cookie (session) on sign-in. It expires when your browser closes or after 30 days, whichever comes first. No third-party trackers.

Contact