privacy policy

Resume Aura ("we", "our", "the Service") is a resume-scoring service offered as both an iPhone app and a browser-based web app at resumeaura.com. The Service analyzes resume text you choose to submit and returns a score, breakdown, suggestions, optional polished downloads, and optional shareable result pages. This policy describes what we collect, what we send where, and what stays on your device versus on our servers.

who we are

Resume Aura, contactable at [email protected].

data you submit

When you choose to analyze a resume, you provide us with:

• Resume content: the text extracted from the PDF or DOCX you upload, or the text you paste into the app.
• Optional filename: the file name associated with an upload or paste.
• Rewrite prompts: any free-form instructions you type when asking the app to rewrite a section or chat-edit your resume.

We do not ask for your name, email, phone number, address, or any other personal identifier. Resume Aura has no account system.

what we do with that data

Submissions are sent over HTTPS to our analysis API at https://resumeaura.com solely so we can compute your Resume Aura score and return suggestions. After the response is returned, we do not retain your submission server-side. No copies are stored in logs, databases, or third-party backup services.

use of OpenAI

To help compute your Resume Aura score, breakdown, and suggestions, our analysis API forwards your resume content and any rewrite prompts to OpenAI for processing. OpenAI handles this data under their own API data-usage policy and does not use API submissions to train their models. Resume content sent to OpenAI is used only to generate your result and is not retained by us afterward.

account email and the email-code login (web app)

The web app's optional download bundle is unlocked per email address. When you purchase the bundle, the email you provide at checkout is stored on our servers alongside an "is_paid" flag and the payment-session identifier so we can recognize you when you sign in on a new browser. Signing in works by sending a 6-digit code to that email address via Amazon Simple Email Service (SES); typing the code back into the app issues a fresh API key for that browser session. The email is used only for sign-in and for the one-time purchase receipt — we do not send marketing email and we do not share your email with anyone.

payments via Stripe

The optional download bundle is sold through Stripe Checkout. Stripe collects and processes your payment details directly on stripe.com; we never see or store your card number, CVC, billing address, or any cardholder data. After a successful payment, Stripe sends us a signed webhook with the Stripe session identifier, the customer email you entered at checkout, and the paid status — that is the only payment-related information we keep. Refunds, chargebacks, and payment disputes are handled through Stripe under their terms. Stripe's own privacy practices are described at stripe.com/privacy.

shareable result pages

When you tap "share" on a score, the Service creates a short public URL of the form resumeaura.com/s/<id>. The stored payload contains your numeric score, the short aura adjective, the short headline ("short_hook"), the four breakdown sub-scores, and, when available, your percentile band and the anonymized comparison-curve counts. It does not contain your resume text, filename, name, email, or any contact information. The Open Graph image shown when the link is unfurled on iMessage, social platforms, or other previewers is generated lazily on demand from the same payload. You can delete any share at any time from Settings → Shared results in the app; deletion removes the payload from our database immediately and breaks the public link.

anonymous score aggregation

Each time you scan a resume, we record only the resulting integer score (a single number from 0 to 100) and the timestamp in an anonymous database. We use this aggregate to draw the score distribution curve you see on the score screen, so you can see how your result compares to everyone else who has used Resume Aura. The record contains no resume text, no filename, no IP address, no device identifier, and no link back to you or to your iPhone — it is genuinely anonymous and cannot be traced to you. The aggregate is used solely to compute the comparison curve and the percentile thresholds (lowest 5%, below median, above median, top 1%). We do not share, sell, or otherwise transfer this aggregate to any third party.

sharing of scores and referral codes

Resume Aura lets you share your Resume Aura score and your personal referral code (for example, by sending them to friends, posting to social media, or messaging apps) using the standard iOS share sheet. When you choose to share, the score, any associated visual card, and your referral code leave the app and become visible to whoever you send them to and to the platform you share through. We never share your score or referral code on your behalf; sharing only happens when you tap share. Referral codes are anonymous identifiers and are not linked to your name, email, or any other personal identifier.

what stays on your device

Your analyzed resumes, Resume Aura scores, breakdowns, issue lists, suggestions, filenames, version history, dismissed-suggestion lists, and the local set of share identifiers you have created are stored locally on your device — in Apple's SwiftData on iPhone, and in browser localStorage / IndexedDB on the web app. Nothing is uploaded unless you initiate a scan, rewrite, chat-edit, share, or download. You can delete all on-device data at any time via Settings → delete all data (this is in addition to deleting any server-side share records, which is a separate action in Settings → Shared results).

third-party services

Resume Aura does not include any third-party analytics, crash reporting, attribution, or advertising SDKs. There is no Firebase, no Mixpanel, no Amplitude, no Sentry, and no ad tracker. The Service does call out to a small set of providers strictly to deliver functionality you initiate:

• OpenAI — for scoring, suggestions, and rewrites (only when you scan, rewrite, or chat-edit).
• Stripe — for the optional download-bundle checkout (only when you start a purchase).
• Amazon Simple Email Service (SES) — to deliver the 6-digit login code email for paid-account recovery on the web app (only when you initiate sign-in).
• The interview-pro renderer — for converting your resume to a PDF or DOCX in the template you choose (only when you tap download).

All other outbound calls are to our own analysis API.

children

Resume Aura is intended for users 13 and older.

your rights and deletion

Because resumes are not retained after analysis and there is no account, there is no server-side user record to delete. To remove all app data from your device, open Resume Aura → Settings → delete all data, or delete the app from your iPhone. If you have questions about a specific submission, email us at [email protected].

security

All network requests use HTTPS. On-device data is protected by the iOS data-protection keychain and file-level encryption available on modern iPhones.

changes to this policy

If we change how the app handles your data, we'll update this page and bump the effective date at the top.

contact

Questions or concerns? [email protected]