Privacy policy.
Effective: 2026-04-19 · Version: 0.1 (pre-launch stub). Final Privacy Policy, reviewed by outside counsel, will replace this document by Q3 2026.
1. Who we are
CertAIn (certainhr.ai), operated by Jon Senger pending business-entity formation. Designated privacy contact during design-partner phase: jon@certainhr.ai.
2. Data we collect
- Account data: name, work email, company name, role, hashed password.
- Billing data: handled by Stripe; CertAIn stores only Stripe customer/subscription IDs.
- Candidate data uploaded by tenants: resumes, notes, interview transcripts submitted by your organization for AI processing. Each tenant controls its own candidate data.
- Usage data: credit-consumption events (user, tenant, action type, timestamp, resource) for billing and audit.
- Analytics: Plausible Analytics (cookieless, privacy-focused) — see /legal/cookies.
3. How we use it
To provide the service, bill for it, maintain the audit trail required by AEDT / AIVIA / EU AI Act reviews, and improve the product in the aggregate. We do not sell personal data. We do not use candidate data for model training or for any purpose outside the tenant’s workspace.
4. How long we keep it
Default candidate-data retention: 24 months from last activity, tenant-configurable within applicable law. Credit-ledger and audit-log retention: 7 years. Post-deletion: 30-day soft-delete window, then hard deletion.
5. Sub-processors
- Anthropic (Claude API): processes submitted resumes and prompts per their commercial API terms; does not train on API inputs by default. Retention: up to 30 days for abuse detection.
- Cloudflare R2: at-rest file storage with tenant-prefixed keys and provider-managed encryption.
- Stripe: billing.
- Render (or successor): hosting.
Full sub-processor list available under /legal/dpa.
6. Your rights
US state privacy laws (CCPA/CPRA, VCDPA, CPA, CTDPA, UCPA, others) apply depending on your residency. EU/UK residents: GDPR/UK GDPR applies. You may request access, correction, deletion, or portability by emailing jon@certainhr.ai. Tenants may also direct these requests through their account owner.
7. Security
See /security for architecture, tenant isolation, encryption, and the architectural human-oversight commitment. Security incidents disclosed without unreasonable delay, within 72 hours of confirmed identification.
8. Changes
We’ll email the account owner at least 14 days before any material change.
9. Contact
This document is a draft. The final version is under counsel review and will be posted before production launch. For enterprise reviews, email jon@certainhr.ai — we’ll send the counsel-reviewed version under NDA.