Vektor Privacy Policy

Last updated: March 9, 2026

Overview

Vektor ("we", "our") is an AI-powered job analysis and resume tailoring tool consisting of a web application and a Chrome browser extension. We are committed to protecting your privacy. This policy explains what data we collect, how we use it, and your rights.

Data We Collect

• Account information: Email address, display name, and hashed password when you register for a Vektor account.
• Job description text: When you explicitly click "Analyze" or "Save" on a job listing page, the extension extracts the job description text from that page and sends it to our server for AI analysis.
• Analysis results: Match scores, cover letters, and resume tailoring suggestions generated by AI based on the job description and your resume data.
• Authentication token: A JWT token stored locally in your browser to maintain your login session.

Data We Do NOT Collect

• Browsing history or activity on non-job pages
• Personal communications
• Financial or payment information
• Location data
• Health information
• Data from pages other than supported job listing sites

How We Use Your Data

• To provide AI-powered job description analysis and resume tailoring suggestions
• To generate cover letters based on your resume and target job descriptions
• To sync analysis results between the browser extension and the web application
• To authenticate your account and manage usage quotas

Data Storage

• Local storage: Saved jobs and authentication tokens are stored locally in your browser using Chrome's storage API.
• Server storage: Account information, resumes, and synced job analysis results are stored on our server (hosted on Railway) in a PostgreSQL database.

Data Sharing

We do not sell, trade, or transfer your data to third parties. Job description text is sent to Google's Gemini API solely for the purpose of AI analysis. No personally identifiable information is included in these API requests.

Data Retention

Your data is retained as long as your account is active. You may request deletion of your account and all associated data by contacting us.

Your Rights

• You can unbind the extension from your account at any time via the extension popup.
• You can delete saved jobs from the extension or web application.
• You can request complete account and data deletion by contacting us.

Security

Passwords are hashed using bcrypt. All communication between the extension, web application, and server is encrypted via HTTPS. Authentication tokens expire after 7 days.

Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page with an updated date.

Contact

If you have questions about this privacy policy, contact us at [email protected].