Privacy Policy
Last updated: March 2026
Overview
DeckdOut ("we", "us", "our") provides an AI-powered Chrome extension that analyses your resume against job descriptions. This Privacy Policy explains what data we collect, how we use it, and how we protect it.
By using DeckdOut, you agree to the practices described in this policy.
What Data We Collect
We collect the following information:
- Email address — provided during account creation, used for authentication and communication.
- Full name — optionally provided during sign-up.
- Resume text — submitted for analysis. Processed in-memory only; not permanently stored.
- Job description text — scraped from the active browser tab. Processed in-memory only; not permanently stored.
- Usage counters — daily counts of analyses, cover letters, and quizzes used (for enforcing plan limits).
- Analysis history — if you choose to save results, a summary is stored in your account.
How Your Data Is Processed
When you run an analysis, your resume text and job description are sent to our backend server, which forwards them to Anthropic's Claude AI API for processing. The AI generates your match score, missing keywords, cover letter, and other outputs.
Resume and job description text is processed in-memory only and is not stored on our servers. Once the AI response is returned to you, the input text is discarded. We do not retain, log, or archive your resume or job description content.
Anthropic's Claude API processes data under their own privacy policy. We use their API in a configuration where input data is not used for model training.
What We Store
Our database (hosted on Supabase, which uses PostgreSQL) stores:
- Your email address and account profile
- Your subscription plan (Free or Pro)
- Daily usage counters (reset each day)
- Saved analysis history summaries (if you choose to save them)
We do not store your full resume text, job descriptions, generated cover letters, or any raw AI outputs on our servers.
Payments
All payment processing is handled by Stripe. DeckdOut never sees, processes, or stores your credit card number, CVC, or billing details. Stripe manages all payment data under their own PCI DSS-compliant security standards.
We receive only the minimum information needed to manage your subscription: your Stripe customer ID and subscription status.
Third Parties
We do not sell, share, or transfer your personal data to any third parties for marketing or advertising purposes.
The third-party services we use are limited to:
- Supabase — database and authentication hosting
- Anthropic (Claude API) — AI text analysis
- Stripe — payment processing
- Railway — backend server hosting
Your Rights
You may at any time:
- Request a copy of your stored data
- Request deletion of your account and all associated data
- Cancel your Pro subscription through your account settings
- Contact us with any privacy concerns
Contact
For any privacy questions or data requests, please contact us at support@deckdout.com.