Terms of Service →

Legal

Privacy Policy

Pivot AI Corp  ·  Effective Date: May 17, 2026  ·  Version 1.0

Your privacy matters to us. This Privacy Policy explains what personal information Pivot AI Corp collects, how we use it, who we share it with, and what rights you have over your data. By using Pivot, you agree to the practices described in this policy. If you have questions, email us at support@joinpivot.co.

Section 01

Overview

Pivot AI Corp ("Pivot," "we," "us," or "our") operates the Pivot job matching platform available at joinpivot.co. We are a Delaware corporation.

This Privacy Policy applies to all information we collect when you use the Pivot website, platform, or email digests. It does not apply to third-party websites or services linked from our platform.

The short version: We collect your email, resume, and usage data to run the matching service. We never sell your personal information. Your resume is processed by AI to generate job matches. You can delete everything at any time.

Section 02

What We Collect

We collect the following categories of information:

Category What specifically Why
Account information First name, last name, email address, current city, relocation preferences To create and manage your account and personalize job matching
Resume content The full text of your uploaded PDF resume To generate your match profile and score jobs against your experience
Subscription & billing Subscription tier, billing dates, payment status (not card numbers — handled by Stripe) To manage your subscription and access level
Usage data Jobs viewed, saved, archived, watchlisted; tab navigation; digest email opens and clicks To improve matching quality and track digest performance
Technical data IP address (at signup), browser type, session tokens, magic link usage timestamps Account security and fraud prevention
Legal consent Timestamp and version of Terms of Service accepted at signup Legal compliance

What we do not collect: We do not collect Social Security numbers, government ID, financial account numbers, biometric data, health information, or any sensitive personal information beyond what is described above.

Section 03

How We Use Your Information

We use the information we collect for the following purposes:

  • Providing the Service — Parsing your resume, generating match scores, selecting jobs for your digest, and delivering email digests
  • Account management — Authentication via magic links, session management, subscription billing
  • AI-powered matching — Processing your resume through our matching algorithm and third-party AI APIs to generate match scores and insights
  • Personalization — Filtering jobs by location, role category, and seniority based on your profile and preferences
  • Communications — Sending digest emails, sign-in links, account notifications, and (if applicable) watchlist alerts
  • Service improvement — Analyzing aggregate usage patterns to improve matching accuracy and product features
  • Legal compliance — Maintaining records of ToS acceptance, resolving disputes, complying with applicable law
  • Fraud prevention — Detecting and preventing unauthorized account access or misuse

We do not use your personal information for advertising, behavioral profiling for third parties, or any purpose not described in this policy.

Section 04

Third-Party Services

We share limited data with the following third-party service providers solely to operate the Service:

Provider Purpose Data shared
Anthropic AI resume analysis and match insight generation Resume text, job description excerpts
Resend Transactional email delivery (digests, sign-in links) Email address, email content
Stripe Payment processing Email address, subscription data (Stripe handles card data directly — we never see card numbers)
Logo.dev Company logo display Company domain names (no personal data)
Railway Cloud hosting and infrastructure All application data (stored on Railway servers in the US)

All third-party providers are contractually required to use your data only for the purposes we specify and to maintain appropriate security standards. We do not authorize any third-party provider to use your personal data for their own marketing or purposes.

We do not share your personal information with employers, recruiters, data brokers, advertisers, or any other third parties not listed above.

Section 05

AI Processing & Your Resume

Pivot's core functionality relies on AI processing of your resume. Here is exactly what happens:

  • At upload: Your resume PDF is converted to text and stored in our database. The text is sent to Anthropic's Claude API to generate a structured professional profile (job categories, seniority level, skills, and experience summary). This profile is cached and used for all subsequent matching.
  • At each digest: Your structured profile is scored against every active job in our database using our matching algorithm. No additional API call is made to third parties at this stage — matching runs on our infrastructure using your cached profile.
  • For Pro insights: When generating "Why you stand out" and "To close the gap" insights, excerpts of your resume profile and the relevant job description are sent to Anthropic's API to generate the insight text.
Important: Resume text sent to Anthropic is subject to Anthropic's Privacy Policy. Anthropic does not use API-submitted data to train its models by default. We use Anthropic's API in a way that does not permit model training on your data.

Your resume text is never sent to employers, shared publicly, or used for any purpose other than generating your job matches and insights.

Section 06

Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. When you cancel your account, all personal data is permanently deleted within 30 days. Only anonymized billing records are retained, as required by US tax law.

  • Account data (name, email, location, preferences) — Retained for the life of your account. Permanently deleted within 30 days of cancellation or account deletion request.
  • Resume files and parsed profile — Retained for the life of your account. Permanently deleted within 30 days of cancellation or account deletion request.
  • Match and job history — Retained for the life of your account. Permanently deleted within 30 days of cancellation or account deletion request.
  • Billing records — Anonymized billing records (transaction amounts, dates, and tier purchased — with personally identifying information removed) are retained for 7 years as required by US tax and accounting law. These records cannot be linked back to your identity once your account is deleted.
  • Legal consent records — Timestamps and version of Terms accepted are retained for 7 years to demonstrate compliance, with personally identifying information removed once your account is deleted.
  • Email send logs — Retained for 2 years for service quality monitoring, with personally identifying information removed once your account is deleted.

When retention periods expire, data is permanently deleted from our systems and from our hosting provider's infrastructure.

Section 07

Security

We take reasonable technical and organizational measures to protect your personal information, including:

  • Passwordless authentication — no passwords are stored, eliminating password breach risk
  • Single-use, time-limited magic links for sign-in (15-minute expiry)
  • Session tokens with 90-day expiry stored as HTTP-only cookies
  • Database encryption at rest provided by our hosting infrastructure
  • HTTPS encryption for all data in transit
  • API keys and secrets stored as environment variables, never in code

No method of electronic storage or transmission is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee absolute security. In the event of a data breach that affects your personal information, we will notify you via email within 72 hours of becoming aware of the breach.

Section 08

Your Rights

You have the following rights regarding your personal information:

  • Access — You may request a copy of all personal information we hold about you
  • Correction — You may update your name, email, and location from your account settings at any time
  • Deletion — You may delete your account and all associated personal data from your account settings, or by emailing us. Deletion is permanent and completed within 30 days. Note that billing records required by law are retained per Section 6.
  • Resume replacement — You may upload a new resume at any time to replace your current one
  • Unsubscribe — You may unsubscribe from digest emails at any time via the unsubscribe link in any email, which deactivates your account
  • Portability — You may request an export of your personal data by emailing privacy@joinpivot.co

To exercise any of these rights, contact us at privacy@joinpivot.co. We will respond within 30 days. We may need to verify your identity before fulfilling certain requests.

California residents. If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA), including the right to know, the right to delete, and the right to opt out of the sale of personal information. We do not sell personal information. To submit a CCPA request, email us at privacy@joinpivot.co.

Section 09

We Don't Sell Your Data

Pivot AI Corp does not sell, rent, trade, or otherwise transfer your personal information — including your resume, email address, or job seeking activity — to any third party for commercial purposes. We are not an advertising business. Our revenue comes from subscription fees, not from monetizing your data.

We do not use your personal information to serve you third-party advertisements, build advertising profiles, or share data with data brokers or advertising networks.

Section 10

Children's Privacy

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from anyone under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@joinpivot.co and we will delete that information promptly.

Section 11

US-Only Service

The Service is intended solely for residents of the United States. All data is stored and processed in the United States. If you access the Service from outside the United States, you do so at your own risk and in violation of our Terms of Service.

We do not make any representations that the Service complies with the laws of any jurisdiction outside the United States, including the EU General Data Protection Regulation (GDPR) or the UK GDPR.

Section 12

Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email and update the "Effective Date" at the top of this page. Your continued use of the Service after the effective date of any changes constitutes your acceptance of the updated policy.

We encourage you to review this policy periodically. Previous versions of this policy are available upon request.

Section 13

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

Pivot AI Corp
Email: privacy@joinpivot.co
Website: joinpivot.co

We will respond to all privacy inquiries within 30 days.