Privacy Policy

1. Introduction and Scope of This Policy

At ATS Resume ("Company", "we", "us", or "our"), we value the trust you place in us by using our platform and services. This Privacy Policy outlines our firm commitment to safeguarding your privacy and details the methods by which we collect, use, disclose, store, and protect your personal information. This document applies to all individuals who access our website, create an account, purchase a package, engage with our resume-making services, or otherwise interact with any features or functionalities offered through our platform.

By accessing or using any part of our website, services, or platform features, you expressly agree to the terms set forth in this Privacy Policy. If you do not agree with this policy or any part thereof, you should refrain from using our services or providing any personal information to us.

This policy is applicable to all data collected through:

Our primary website and its subdomains
Our online forms, including sign-up, login, package selection, and resume input pages
Payment portals integrated into our service
Communication channels including customer service requests and contact forms

The Privacy Policy is designed in accordance with applicable data protection laws including, but not limited to, the Information Technology Act, 2000 (India), and any other relevant jurisdictional laws governing data privacy and security.

2. Information We Collect

In order to provide high-quality, tailored resume-making and career enhancement services, ATS Resume collects various types of information from users who engage with our platform. This information may be gathered directly from users or automatically through their interactions with our website. The types of information we collect include, but are not limited to, the following:

2.1 Personally Identifiable Information (PII)

When you choose to create an account, use our services, or contact us, we may collect information that can be used to identify you personally. This includes, but is not limited to:

Full name
Email address
Contact number
Residential or billing address
Educational qualifications
Employment history
Professional skills and certifications
Links to professional profiles (e.g., LinkedIn)
Payment details (processed via secure third-party gateways)

This information is voluntarily provided by you during account creation, resume submission, service request, or payment processing.

2.2 Account Credentials and Login Data

To support the security and functionality of our platform, we collect and store user credentials such as:

Chosen username and password
Security questions (if applicable)
Login timestamps and session logs

We implement encryption and secure storage protocols to ensure the confidentiality and integrity of all login credentials.

2.3 Automatically Collected Information

In addition to the information you provide directly, our platform uses cookies and similar technologies to automatically collect data on how users interact with our site. This includes:

IP address
Browser type and version
Device type and operating system
Date and time of access
Pages visited and time spent
Navigation paths and clickstream data
Referring/exit pages

This data enables us to monitor site performance, detect potential security threats, and optimize user experience based on usage patterns.

2.4 Cookies and Tracking Technologies

We use cookies, web beacons, and other digital tracking tools to enhance user experience, remember user preferences, and evaluate website performance. These tools help us:

Track changes made by the user on resume drafts
Understand user behavior for service optimization
Personalize the content and layout based on usage history

Users are informed about our cookie usage upon first visit and may manage cookie preferences through their browser settings.

3. How We Use the Information

At ATS Resume, we are committed to using the personal and behavioral data we collect only in ways that are ethical, transparent, and directly aligned with the delivery and enhancement of our services. Below is an exhaustive explanation of how the collected information is used:

3.1 Service Delivery and Fulfillment

The primary purpose for collecting your information is to effectively execute the services you have requested from us. This includes:

Creating customized and ATS-compliant resumes based on your educational, professional, and personal background.
Providing edits, revisions, and design enhancements to resume drafts.
Maintaining historical records of your resume projects to support future revisions or reorders.
Managing your account, including login credentials, preferences, and subscription choices.

3.2 Communication and Customer Support

Your contact details are used to communicate important information related to your account or service, including:

Order confirmations, delivery timelines, and service updates.
Responding to support requests or inquiries submitted via our contact form or customer care channel.
Informing you about relevant service offerings, changes to terms, or updates to our Privacy Policy.
Sending satisfaction surveys to better understand your experience and improve our support services.

We do not engage in spam or unsolicited promotional emails. You may opt out of marketing communications at any time via the unsubscribe link provided in our emails.

3.3 Personalization and User Experience Optimization

To deliver a tailored experience, we may use behavioral data (collected via cookies and analytics tools) to:

Recognize returning users and maintain session continuity.
Remember your progress and changes made in resume drafts.
Offer personalized suggestions for resume improvements based on past activity or industry standards.
Display content and packages that are most relevant to your job-seeking needs and preferences.

3.4 Internal Analytics and Platform Enhancement

We analyze anonymized and aggregated user data to:

Measure and enhance the performance of our website and service processes.
Identify bugs, usability issues, or performance bottlenecks.
Develop new features and refine existing offerings based on usage trends.

All such analytics are performed under strict confidentiality and do not involve any public disclosure of personally identifiable data.

3.5 Legal and Compliance Requirements

In limited circumstances, we may access or disclose your information to:

Enforce our Terms of Service and ensure compliance with our platform policies.
Investigate or prevent unlawful activities, fraud, or potential threats to our users or infrastructure.
Comply with legal obligations, regulatory inquiries, or lawful requests from law enforcement authorities in India.

Such disclosure will always be governed by applicable data protection and privacy laws, and we will only disclose the minimum amount of data necessary to comply with legal obligations.

4. Sharing and Disclosure of Personal Information

At ATS Resume, we understand that the confidentiality of your personal data is fundamental to your trust in our services. Accordingly, we follow a strict policy regarding the sharing and disclosure of the information you provide. We do not sell, rent, lease, or otherwise disclose your personal data to unrelated third parties for their own marketing or commercial purposes.

However, there are limited and controlled instances where your information may be disclosed, as outlined below:

4.1 Disclosure to Hiring Companies (with Consent)

As part of our resume optimization and job-seeking assistance services, we may, with your explicit consent or action, share your profile and resume with companies or recruiters who are actively looking to hire. This enables you to benefit from increased visibility and potential employment opportunities. In such cases:

Only relevant and necessary information will be disclosed, such as your resume, job preferences, and contact details.
The recipient companies will be informed of their responsibility to use this data solely for recruitment purposes and in compliance with applicable data protection laws.
You may opt out of this data-sharing arrangement at any time by notifying us in writing or updating your account settings (if applicable).

4.2 Service Providers and Contractors (Bound by Confidentiality Agreements)

We may engage trusted third-party vendors or service providers to help operate our website and support essential functions (such as hosting infrastructure, payment processing, email delivery, or analytics). These parties may access limited personal information strictly for the purpose of performing their contracted tasks. We ensure that:

Such third parties are bound by robust confidentiality obligations and data protection agreements.
They are prohibited from using your information for any purpose other than the services explicitly delegated by us.
All vendors are carefully vetted for compliance with applicable data privacy standards.

4.3 Legal Obligations and Compliance

We may be required to disclose personal information if:

Mandated by law, subpoena, court order, or other legal processes.
Requested by government or law enforcement authorities as part of a legitimate investigation.
Necessary to establish or exercise our legal rights or defend against legal claims.
Required to prevent, detect, or investigate illegal activities, fraud, or threats to the security of our services, users, or infrastructure.

In any such scenario, we will disclose only the minimum information necessary to meet the obligation and, where legally permissible, notify the affected users of such disclosures.

4.4 Business Transfers

In the unlikely event of a merger, acquisition, restructuring, or sale of all or part of our business assets, user information may be transferred as part of the transaction. In such cases:

We will ensure that your information continues to be treated in accordance with this Privacy Policy.
We will notify you via prominent notice or direct communication where possible prior to the transfer of your data.

5. Data Retention and Storage

At ATS Resume, we recognize the importance of responsibly managing the personal information you entrust to us. This section explains how long we retain your data, the measures we take to secure it, and the criteria we use to determine retention periods.

5.1 Retention of Personal Data

We retain your personal data only for as long as it is necessary to fulfill the purposes for which it was collected, including for the purposes of providing our resume creation services, complying with legal obligations, resolving disputes, and enforcing our agreements.

Depending on the nature of your interaction with ATS Resume, data may be retained for different durations:

User Account Information: If you create an account with us, your personal information and associated resume data will be retained for as long as your account remains active or until you request its deletion.
Resume Content and Versions: Any resumes, cover letters, or application documents created using our platform will be stored securely and retained until you manually delete them, or your account is deleted.
Payment and Transaction Records: Payment details (excluding sensitive card data, which we do not store directly) and billing history are retained for up to 7 years in accordance with applicable tax and financial regulations.
Support Requests and Communication Logs: Emails, chat messages, or contact form submissions to our support team may be retained for up to 2 years for internal training, quality assurance, and legal purposes.

If you cease using our services but do not formally request deletion, we may retain your data for a reasonable period in case you wish to reactivate your account or retrieve your documents. After this period, data may be archived, anonymized, or deleted in accordance with our data lifecycle policy.

5.2 Secure Storage Practices

All personal information is stored on secure servers with industry-standard encryption protocols, firewalls, and access controls. Our infrastructure is hosted in secure, monitored environments that comply with applicable data protection regulations.

Data in transit is protected using SSL/TLS encryption, ensuring that information exchanged between your browser and our servers remains confidential.
Data at rest is stored in encrypted formats and access is strictly limited to authorized personnel who require it to perform essential business functions.
We routinely conduct security audits and system updates to protect against unauthorized access, data breaches, and potential vulnerabilities.

5.3 Data Deletion and Disposal

You have the right to request deletion of your personal data at any time. Upon receiving a verified deletion request, we will take the following actions:

Remove your user account and associated personal information from our active databases.
Delete or anonymize any stored resume files, documents, or saved progress.
Retain only minimal data necessary to comply with legal obligations or to enforce our terms (e.g., transaction logs).

When data is no longer needed, we dispose of it securely through automated purging mechanisms or manual deletion protocols, depending on the type and location of the data.

5.4 Exceptions to Retention Periods

In certain cases, we may retain data beyond the normal retention period if required:

To comply with a legal obligation or court order.
To resolve legal disputes or enforce our policies.
To prevent fraud, enforce security measures, or protect our rights or those of our users.

6. Information Sharing and Disclosure

At ATS Resume, we uphold a strong commitment to the privacy and confidentiality of our users. We do not sell, rent, or trade your personal information to third parties for marketing or commercial purposes. However, there are specific, limited circumstances in which your data may be shared, always with a focus on providing our services securely and effectively, and in accordance with applicable laws.

6.1 No Unauthorized Sharing

We do not share your personal information, including but not limited to your name, contact details, resume contents, payment data, or usage behavior, with third parties for promotional or unrelated business purposes. Any sharing of data is strictly governed by confidentiality agreements and legal safeguards.

6.2 Sharing with Hiring Companies

As a core function of our resume services, ATS Resume may share user information—including resumes, cover letters, portfolios, and profile summaries—with companies actively seeking candidates, only when the following conditions are met:

The user has opted in to share their profile for job opportunities or has applied to a job through our platform.
The recipient company has been verified by ATS Resume and is under contractual obligation to maintain confidentiality and use the shared data solely for recruitment purposes.
The data shared is strictly limited to what is necessary for the hiring process.

Important: We never share sensitive personal data (such as government identification numbers or financial records) unless it is a legal requirement or the user has explicitly consented.

6.3 Sharing with Service Providers (Processors)

We may share limited data with trusted third-party service providers who perform services on our behalf. These include:

Payment processing partners to facilitate online transactions.
Cloud storage providers to securely host user-generated content.
to help us understand how users interact with our services and improve our performance.
Customer support and CRM platforms to respond to user inquiries and maintain account records.

Each of these service providers is contractually obligated to maintain the confidentiality of the information and is prohibited from using your data for any purpose other than delivering services to ATS Resume.

6.4 Legal Compliance and Safety Obligations

We may disclose your personal information to government agencies, regulators, law enforcement, or other authorities under the following circumstances:

To comply with legal processes such as a court order, subpoena, or regulatory investigation.
When required by applicable laws, such as for fraud prevention, tax reporting, or anti-money laundering regulations.
To protect the rights, safety, or property of ATS Resume, our users, or the public, including the enforcement of our Terms of Service and investigation of policy violations.

In all such cases, we will take reasonable steps to ensure that the request is valid and that only the minimum required information is disclosed.

6.5 Corporate Transfers

In the event that ATS Resume is involved in a merger, acquisition, asset sale, reorganization, or bankruptcy, user data may be transferred as part of that transaction. We will notify you through appropriate means, such as email or a prominent notice on our site, before your data is transferred and becomes subject to a different privacy policy.

8. Your Rights and Choices

At ATS Resume, we believe in empowering our users by providing transparency and control over their personal data. We respect your rights as a data subject and provide mechanisms to manage your personal information, access it, correct inaccuracies, and make informed decisions about how it is used.

7.1 Right to Access

You have the right to request access to the personal information we hold about you. Upon receiving such a request, we will provide:

A summary of the categories of personal data collected.
The specific pieces of personal information we have stored.
Details of how the information has been used and with whom it has been shared.

This information will be provided to you in a structured, commonly used, and machine-readable format, usually within a reasonable timeframe and subject to verification of your identity.

7.2 Right to Rectification

If you believe that any personal information we hold about you is inaccurate, incomplete, or outdated, you have the right to request corrections. We will promptly update our records upon receiving valid documentation or information demonstrating the need for amendment.

7.3 Right to Withdraw Consent

Where we rely on your consent to process personal data (for instance, when you opt in to share your resume with hiring companies), you have the right to withdraw that consent at any time. Upon such withdrawal, we will cease processing your information for the specified purpose, except where we are required by law to retain it or have other lawful grounds for doing so.

7.4 Right to Deletion ("Right to be Forgotten")

You may request the deletion of your personal data from our systems under the following circumstances:

The information is no longer necessary for the purposes for which it was collected.
You have withdrawn your consent and there is no other legal ground for processing.
You object to the processing, and there are no overriding legitimate interests.
The data has been processed unlawfully.

Please note that certain data may be retained if required for legal, regulatory, or dispute resolution purposes, or to enforce our contractual rights.

7.5 Right to Object and Restrict Processing

You have the right to object to the processing of your data in specific situations, such as:

When processing is based on our legitimate interests and you believe such interests are overridden by your fundamental rights.
When your data is being processed for direct marketing purposes.

You also have the right to request that we temporarily restrict the processing of your data while a complaint or correction request is being reviewed.

7.6 Account Deletion and Deactivation

Users may deactivate or delete their ATS Resume account at any time by:

Logging into their account settings and initiating the deletion request.
Contacting our Privacy Office using the contact form provided on our website.

Once deactivated or deleted, your account will no longer be accessible, and we will take steps to permanently remove or anonymize your personal data, subject to our data retention obligations.

7.7 Exercising Your Rights

To exercise any of the above rights, you may contact us at our designated Privacy Request Portal or via the Contact Form available on our website. Please provide sufficient information to verify your identity and specify the nature of your request.

We aim to respond to all legitimate requests within 30 calendar days, though this period may be extended under complex circumstances, in which case we will notify you promptly.

8. Data Retention Policy

At ATS Resume, we adhere to a responsible and purpose-driven data retention policy to ensure that your personal information is not retained longer than necessary. We retain data only for as long as it is required to fulfil the purposes described in this Privacy Policy, to comply with applicable legal obligations, to resolve disputes, or to enforce our agreements.

8.1 Duration of Retention

The specific duration for which we retain your personal information depends on several factors, including:

The nature of the data.
The purposes for which it was collected.
Legal and regulatory requirements.
Our legitimate operational needs.

In general:

Account Information (such as name, email, and resume data) is retained for as long as your account remains active.
Resume Content and associated files (uploaded documents, cover letters, etc.) are retained for a period of up to 24 months after your last activity, unless you request deletion sooner.
Billing and Payment Information is retained for a period of at least 5 years in accordance with tax, financial, and audit obligations.
Log and Usage Data, including cookies and analytics, may be stored for up to 12 months to help us improve our services and detect abuse.

8.2 Inactive Accounts

If your account has been inactive for an extended period (typically 18 months or more), we may:

Send you an email notice regarding your inactivity.
Prompt you to log in to keep the account active.
Automatically delete or anonymize personal data associated with the account after providing reasonable notice, unless retention is required by law.

8.3 Data Deletion Requests

You may request that we delete your personal information at any time. Upon receiving such a request and verifying your identity:

We will delete or anonymize your data within 30 calendar days, unless otherwise required to retain it for legitimate business or legal purposes.
Data already shared with third parties (such as hiring companies) may not be retrievable, and you may need to contact them directly.

8.4 Exceptions to Deletion

Certain categories of data cannot be immediately deleted upon request, including:

Data required for legal compliance (e.g., tax and financial records).
Data required to resolve disputes or enforce our agreements.
Aggregated or anonymized data that no longer identifies you personally.

8.5 Anonymized Data

After the retention period expires or upon deletion requests, we may convert your data into an anonymized format. Such data:

Cannot be used to identify you.
May be retained indefinitely for research, benchmarking, and business analytics purposes.

9. Data Security and Protection Measures

At ATS Resume, we place the highest priority on the security of your personal information. We are committed to implementing, maintaining, and regularly updating administrative, technical, and physical safeguards designed to protect your data from unauthorized access, use, alteration, disclosure, or destruction.

9.1 Security Protocols

To ensure the safety and integrity of the data we collect and store, we utilize industry-standard security practices, including but not limited to:

Secure Socket Layer (SSL) Encryption: All data transmitted between your browser and our servers is encrypted using SSL/TLS technology to prevent interception by third parties.
Firewall and Intrusion Detection Systems: Our infrastructure is protected by robust firewalls and automated monitoring systems to detect and mitigate unauthorized access or malicious activity.
Password Protection and Hashing: User passwords are encrypted using strong cryptographic hashing algorithms. We never store plain-text passwords.
Access Controls: Access to user data is strictly limited to authorized personnel on a need-to-know basis and is governed by strict confidentiality obligations.
Two-Factor Authentication (2FA): For enhanced protection, we offer or may require two-factor authentication for login to accounts, particularly those with administrative privileges.

9.2 Payment Security

ATS Resume does not store complete payment card details directly on our servers. All online transactions are securely processed through PCI-DSS-compliant payment gateways. These third-party processors follow strict data security standards to safeguard your financial information.

We do not access or store your card CVV or full credit/debit card numbers after payment completion.

9.3 Protection Against Data Breaches

Despite our best efforts, no digital platform can guarantee absolute security. In the unlikely event of a data breach:

We will assess the nature and scope of the incident immediately.
We will notify affected users via email or account alerts within 72 hours of discovering the breach, where legally required.
We will cooperate fully with regulatory authorities and take all necessary remedial measures to mitigate the breach and prevent future occurrences.

9.4 User Responsibility

While we take rigorous steps to protect your information, we urge you to take the following precautions to enhance your personal security:

Choose strong, unique passwords for your ATS Resume account.
Do not share your login credentials with others.
Always log out of your account after use on shared devices.
Immediately report any suspicious activity or unauthorized access to your account.

9.5 Third-Party Integrations

Where our services integrate with third-party tools (such as job boards or resume analyzers), we perform due diligence to ensure these partners comply with robust security standards. However, we are not responsible for the security practices of those third-party services outside of our direct control.

10. Children's Privacy and Minor Use Restrictions

ATS Resume is firmly committed to complying with all applicable data protection and child safety regulations, including those that restrict the collection and processing of personal data belonging to individuals under the age of majority.

10.1 Intended Audience

Our website, services, and all associated features are strictly intended for use by individuals who are at least 18 years of age or older, or the age of legal majority in their jurisdiction, whichever is greater. We do not knowingly or intentionally collect, solicit, or process personal data from minors or children under the age of 18.

If you are a minor or do not meet the required age threshold, you are strictly prohibited from using our website, creating an account, submitting personal information, or purchasing any of our services. By accessing or using our website, you are confirming that you are legally eligible to do so under applicable laws.

10.2 Actions Upon Discovery of Minor Use

In the event that we become aware, through any means, that a user of our platform is a child or a minor who has provided personal data in violation of this policy:

We will take immediate steps to delete the account and all associated personal information from our records.
We will notify the individual (if appropriate) or their legal guardian, explaining the reason for account termination and deletion.
We reserve the right to take additional actions deemed necessary to prevent further unauthorized access by underage users.

10.3 Parental Control and Responsibility

We strongly encourage parents and legal guardians to monitor and guide the online activities of their children. If a parent or guardian believes that their child has inadvertently submitted personal information to ATS Resume, they are encouraged to contact us immediately using the details provided in the "Contact Us" section below.

Upon verification of parental identity, we will take appropriate steps to address the concern, which may include removal of the information from our databases and disabling of the associated account.

10.4 Compliance with Laws

This section is designed in accordance with applicable child data protection laws and standards, including but not limited to the Children's Online Privacy Protection Act (COPPA) , where relevant, and emerging regulations concerning digital privacy rights for minors.

11. Cookies and Tracking Technologies

At ATS Resume, we use cookies and similar tracking technologies to enhance user experience, improve service delivery, analyze site traffic, and ensure the overall functionality and performance of our digital platform. This section outlines the types of cookies we use, their purpose, and the rights of users concerning these technologies.

11.1 What Are Cookies?

Cookies are small data files placed on your device (computer, tablet, mobile phone) when you visit a website. They enable the website to recognize your device and store certain information about your preferences or past actions. Cookies may be set by us (first-party cookies) or by third-party services used within our platform (third-party cookies).

11.2 Types of Cookies We Use

We employ the following categories of cookies on our platform:

Essential Cookies: These cookies are strictly necessary for the proper functioning of our website and core features, such as user authentication, security, and access control. Disabling these cookies may render parts of our website inoperable.
Performance and Analytics Cookies: These cookies help us understand how users interact with our platform, which pages are visited most frequently, and where users may encounter issues. We use this data solely to improve website performance, optimize our resume-building tools, and enhance user satisfaction.
Functionality Cookies: These cookies remember your preferences (such as previously selected package combinations or preferred formatting styles) to provide a more personalized and consistent user experience during return visits.
Tracking and Customization Cookies: With user consent, we use tracking cookies to observe patterns of behavior, which assists us in tailoring our services and marketing to better suit your interests and professional goals.

11.3 Purpose of Cookie Use

Our primary reasons for employing cookies and similar tracking technologies include:

Maintaining secure user sessions
Keeping track of changes users make to their resume drafts
Storing login credentials for faster access
Evaluating website functionality and user interaction
Offering recommendations or updates relevant to your activity
Monitoring service usage trends to optimize feature performance

We do not use cookies to collect sensitive personal information such as passwords, payment details, or government-issued identification numbers.

11.4 Cookie Management and User Control

You have the right to control how cookies are used. Most web browsers provide tools to manage cookie behavior, including the ability to block or delete cookies entirely. However, please note that restricting cookies may affect the usability and functionality of our services, particularly features that rely on user-specific data retention.

We also provide cookie consent notices when you first access our platform, allowing you to choose which categories of cookies you wish to accept or decline, in accordance with applicable data protection laws.

11.5 Third-Party Tracking Technologies

Although ATS Resume does not partner with ad networks or data brokers, some third-party tools embedded on our site (such as analytics platforms) may deploy their own cookies to collect anonymized usage data. These cookies are governed by the privacy policies of the respective third parties, and we recommend reviewing them independently.

13. Data Sharing and Third-Party Disclosure

At ATS Resume, we understand and respect the importance of maintaining the privacy and confidentiality of our users' personal information. We do not sell, rent, trade, or otherwise disclose your personal data to unrelated third parties for their own marketing or commercial purposes. However, in specific and limited circumstances essential for the functioning of our services, certain categories of data may be shared with trusted third parties. This section outlines the conditions, purposes, and safeguards associated with such data disclosures.

12.1 No Sale of Personal Data

We expressly confirm that we do not sell or monetize personal information of our users in any form to third parties. Your data is not provided to advertisers, data brokers, or marketing platforms. We maintain strict policies against unauthorized distribution or use of your information.

12.2 Disclosure to Prospective Employers and Hiring Partners

As a core function of our resume services, ATS Resume provides resume development and candidate matching services. Accordingly, when you create and finalize a resume with us, we may share specific information — such as your resume, professional profile, job preferences, and qualifications — with companies or recruiters actively seeking candidates in your area of expertise.

Such disclosures are made:

Only with your express consent provided during resume finalization or application submission;
Only to verified hiring companies or placement partners registered with our platform;
Solely for the purpose of employment consideration and not for any unrelated business activity.

We implement contractual controls and due diligence to ensure that hiring partners handle shared candidate information responsibly and lawfully.

12.3 Use of Service Providers and Sub-Processors

We may share limited data with trusted third-party service providers who perform services on our behalf. These may include, but are not limited to:

Secure payment gateway providers
Cloud-based data storage and backup services
Resume formatting or automation tools
Website analytics platforms

All of these service providers are granted access only to the information necessary to perform their designated functions and are contractually obligated to maintain the confidentiality and security of your data. They are prohibited from using the data for any purpose other than delivering the agreed-upon services to us.

12.4 Legal Compliance and Safety Obligations

In rare circumstances, we may be required to disclose your personal information if such disclosure is:

Required by applicable law, regulation, court order, or legal process;
Necessary to enforce our Terms of Service, privacy obligations, or contractual rights;
Required to protect the rights, property, or safety of ATS Resume, its users, or the public;
Done in response to valid government requests, such as those made for national security or law enforcement purposes.

In all such instances, we will endeavor to provide notice to the affected user unless prohibited by law or compelling legal circumstances.

12.5 Business Transfers

In the event that ATS Resume is involved in a merger, acquisition, asset sale, reorganization, or bankruptcy, user data may be among the transferred business assets. Should such a transaction occur, we will ensure that your personal data remains subject to strict privacy obligations consistent with this policy, and users will be notified of any material changes.

13. Data Security Measures

At ATS Resume, the security of your personal data is of paramount importance to us. We are committed to maintaining the integrity, confidentiality, and availability of the information we collect and store. To achieve this, we implement a combination of physical, technical, and organizational safeguards designed to prevent unauthorized access, misuse, alteration, disclosure, or destruction of your personal information.

13.1 Industry-Standard Encryption and Secure Storage

We utilize secure encryption protocols, such as Secure Socket Layer (SSL)/Transport Layer Security (TLS), to protect data transmitted between your device and our servers. All sensitive information — including login credentials, payment details, and personal data — is encrypted both in transit and at rest using commercially accepted cryptographic standards. Our servers are hosted in secure data centers that follow ISO/IEC 27001, SOC 2, or equivalent security certifications to maintain high levels of protection.

13.2 Access Controls and Authorization Protocols

Access to user data is strictly limited to authorized personnel who require such access for legitimate business operations. All employees and contractors at ATS Resume are required to adhere to confidentiality agreements and undergo regular training on data protection principles. Multi-factor authentication (MFA), role-based access controls (RBAC), and strict session timeouts are enforced across all administrative systems to prevent unauthorized or accidental data exposure.

13.3 Security Audits and Continuous Monitoring

We routinely monitor our systems and networks for vulnerabilities, intrusions, and unauthorized access attempts. Regular internal audits, penetration testing, and code reviews are conducted to identify and remedy potential weaknesses. We also utilize intrusion detection and prevention systems (IDPS) and real-time log analysis tools to monitor the security status of our infrastructure and respond to suspicious activity promptly.

13.4 Data Minimization and Retention Policies

We practice the principle of data minimization by collecting only the personal information necessary to deliver our services efficiently. Additionally, we retain your information only for as long as it is required to fulfill the purposes outlined in this policy, unless a longer retention period is mandated by law, regulatory requirements, or contractual obligations. Upon expiration of the retention period, all personal data is securely deleted or anonymized in accordance with our data destruction protocols.

13.5 Incident Response and Breach Notification

Despite our best efforts, no data transmission or storage system can be guaranteed to be 100% secure. In the unlikely event of a data breach or unauthorized access incident, ATS Resume has a detailed incident response plan in place. This plan includes:

Immediate containment and investigation of the breach;
Assessment of the nature and extent of the affected data;
Timely notification to affected users, as required by applicable data protection laws;
Implementation of remedial actions to prevent future occurrences.

We treat all data breaches with the highest level of urgency and transparency.

13.6 Responsibility of the User

While we take every reasonable step to protect your personal data, users also play an important role in maintaining security. We strongly encourage all users to:

Use strong and unique passwords for their account;
Refrain from sharing login credentials with others;
Regularly update their passwords;
Immediately notify us of any suspected unauthorized activity on their account.

14. Data Retention and Deletion Policy

At ATS Resume, we recognize the importance of retaining personal data only for as long as it serves a legitimate business or legal purpose. This policy outlines the principles and procedures that govern how long we retain your data, the criteria we use to determine retention periods, and the methods by which data is securely deleted or anonymized when it is no longer required.

14.1 Purpose-Driven Retention

We retain personal information only for the duration necessary to fulfill the specific purposes for which it was collected, including:

The execution and delivery of our resume-making and optimization services;
Customer support and post-service engagement;
Compliance with legal, regulatory, or contractual obligations;
Enforcement of our Terms of Service and Privacy Policy;
Prevention of fraud, abuse, or other unlawful activity.

Once the original purpose has been fulfilled, and provided that no overriding legal or regulatory obligations exist, personal data will be deleted or anonymized in a timely and secure manner.

14.2 Retention Timeframes

Retention periods vary depending on the nature of the data and the reason it was collected. The general guidelines are as follows:

Account Information: Retained for the duration of the user's active account and for up to 24 months following account deactivation, unless otherwise requested or required.
Resume Content & Related Documents: Retained for as long as the user continues to use our services or for up to 12 months post-service delivery unless earlier deletion is requested.
Payment and Billing Data: Retained in accordance with applicable tax and financial recordkeeping laws, typically for a minimum of 5 years from the date of transaction.
Cookies and Analytics Data: Retention depends on the type of cookie; session cookies are deleted after your session ends, while persistent cookies are retained for up to 12 months, subject to your browser settings and consent choices.

14.3 Data Deletion upon User Request

You may, at any time, request that your personal data be deleted from our systems. Upon receiving a verifiable request, we will:

Authenticate the identity of the requesting individual to prevent unauthorized deletions;
Review and assess whether any legal or contractual obligations require us to retain certain data;
Proceed with secure deletion or anonymization of the relevant personal data, typically within 30 business days of the request.

Please note that in certain circumstances — such as where data is stored in secure backups — deletion may be deferred until the backup data is purged as part of our scheduled backup lifecycle.

14.4 Anonymization and Archiving

Where deletion is not feasible or legally required, we may instead anonymize the personal data so that it can no longer be linked to any identifiable individual. Such anonymized data may be retained for statistical analysis, service optimization, research, and other legitimate business purposes in compliance with applicable laws.

Archived data that is retained for audit, legal, or security purposes is stored in a segregated and access-controlled environment and is not used for any active processing activities unless explicitly required.

14.5 Exceptions to Retention Periods

We may retain personal data beyond the standard retention periods if:

Required to comply with a legal obligation (e.g., court order, statutory requirement;
Necessary to resolve disputes or enforce our agreements;
Mandated by a regulatory authority;
Needed to ensure fraud prevention or protect the safety of our platform and its users.

In such cases, data will only be retained for the duration necessary to fulfill the specific exception.

15. User Rights and Data Access Requests

At ATS Resume, we are fully committed to upholding the rights of our users with regard to their personal data, in alignment with globally recognized privacy principles and, where applicable, data protection laws such as the General Data Protection Regulation (GDPR), the Information Technology Act of India, and any other relevant regional regulations. This section outlines your rights as a data subject and the processes available to you for exercising those rights.

15.1 Right to Access Personal Information

You have the right to request access to the personal data we hold about you. Upon submission of a verifiable access request, we will provide you with:

A confirmation that your data is being processed;
A copy of the personal data we hold about you;
The purposes for which your data is being processed;
The categories of personal data involved;
Any third parties with whom the data has been shared (if applicable);
The duration for which your data will be retained or the criteria used to determine that duration.

We aim to respond to access requests within 30 business days from the date of receipt, subject to verification of your identity and the nature of the request.

15.2 Right to Rectification

If you believe that any personal information we hold about you is inaccurate, incomplete, or outdated, you have the right to request that we correct or update such data without undue delay. You may also be able to make corrections yourself through your user dashboard, if available.

In the event that we are unable to accommodate the requested changes (for example, if doing so would violate legal obligations or compromise system integrity), we will notify you of the reason and discuss any possible alternatives.

15.3 Right to Erasure (Right to Be Forgotten)

You have the right to request the deletion of your personal data in the following circumstances:

The data is no longer necessary for the purposes for which it was collected;
You withdraw your consent (where processing is based on consent);
You object to the processing, and there are no overriding legitimate grounds for continuing;
The data was unlawfully collected or processed;
Deletion is required to comply with a legal obligation.

Upon validation of your request, we will securely delete or anonymize the data and notify you of the action taken. Please note that certain data may be retained for compliance with legal, accounting, or security requirements.

15.4 Right to Restriction of Processing

You may request that we restrict the processing of your data if:

You contest the accuracy of the data for a period that allows us to verify it;
The processing is unlawful, and you oppose erasure and request restriction instead;
We no longer need the data, but you require it for the establishment, exercise, or defense of legal claims;
You have objected to processing, and we are evaluating whether our legitimate grounds override yours.

While a restriction is in place, your data will not be used for any active processing purposes, except where required by law.

15.5 Right to Data Portability

You have the right to receive the personal data you provided to us in a structured, commonly used, and machine-readable format. Where technically feasible, you may also request that we transfer your data directly to another organization or service provider of your choosing.

This right applies only to personal data processed by automated means and where the legal basis for processing is your consent or a contract.

15.6 Right to Object to Processing

You have the right to object, on grounds relating to your particular situation, to the processing of your personal data. We will cease processing your data unless we can demonstrate compelling legitimate grounds to continue that override your interests, rights, and freedoms, or the data is necessary for the establishment or defense of legal claims.

You also have the right to object to direct marketing communications at any time, in which case we will immediately honor your preference and cease sending such communications.

15.7 Right to Withdraw Consent

Where our data processing relies on your consent, you have the right to withdraw that consent at any time, without affecting the lawfulness of processing carried out prior to withdrawal. You may exercise this right through your account settings or by contacting our Privacy Officer (details provided below).

15.8 Submitting a Request

To exercise any of your rights, you may submit a formal request by emailing our Data Protection Officer at:

📩privacy@atsresume.com

To ensure the security of your information, we may request additional verification of your identity before processing any rights-related request. We reserve the right to decline requests that are manifestly unfounded, excessive, repetitive, or technically unfeasible under applicable laws.

16. Data Security Practices and Safeguards

At ATS Resume, we recognize that the confidentiality, integrity, and availability of your personal data are fundamental to maintaining your trust. As such, we employ a layered and robust security architecture to protect your data against unauthorized access, alteration, disclosure, or destruction. This section outlines our security philosophy, the specific practices we adopt, and the protocols we follow to ensure comprehensive data protection throughout the lifecycle of your information.

16.1 Security Philosophy and Principles

Our security framework is guided by the following core principles:

Confidentiality – Ensuring that information is only accessible to those with authorized access.
Integrity – Protecting data from unauthorized modification or corruption.
Availability – Guaranteeing that systems and data are accessible to authorized users when required.
Accountability – Maintaining detailed logs and audit trails of all sensitive operations for transparency and oversight.

We continually assess, update, and refine our systems to respond proactively to emerging threats and evolving technology.

16.2 Technical and Administrative Safeguards

We implement the following technical and organizational measures to secure your personal data:

Encryption: All data transmission between your device and our platform is secured using industry-standard HTTPS with TLS 1.2 or higher. Sensitive information, including login credentials and payment details, is encrypted both in transit and at rest using AES-256 encryption.
Access Controls: Data access is strictly controlled based on user roles and responsibilities. Administrative access is restricted to trained personnel, authenticated through multi-factor authentication (MFA), and regularly reviewed.
Firewall & Intrusion Detection Systems: Our systems are protected by enterprise-grade firewalls, intrusion detection, and intrusion prevention systems (IDS/IPS) to identify and neutralize unauthorized access attempts.
Network Segmentation: Internal networks are segmented to isolate sensitive systems and minimize exposure in the event of a security breach.
Regular Audits: We conduct routine internal security audits, vulnerability scans, and penetration testing to identify and resolve weaknesses proactively.
Backups and Redundancy: Encrypted backups are maintained at geographically redundant locations to ensure data recovery in the event of a hardware failure or system outage.

16.3 Employee Awareness and Access Governance

All ATS Resume employees, contractors, and affiliates who are granted access to personal data are:

Required to sign confidentiality and data protection agreements;
Trained on secure handling of personal data and updated privacy regulations;
Subject to access logs and activity monitoring for high-privilege operations;
Immediately de-provisioned upon role change or termination of employment.

We operate under a strict need-to-know and least privilege access policy across all departments.

16.4 Platform Resilience and Disaster Recovery

To maintain continuous service availability and resilience:

We implement redundant servers and cloud infrastructure with failover support;
We have established disaster recovery and business continuity plans that are tested regularly;
Critical systems are monitored 24/7 for anomalies and automatic failover is activated in the event of a system failure.

16.5 Incident Response and Breach Notification Protocol

In the rare event of a security incident or data breach, ATS Resume has a formal incident response plan in place that includes:

Immediate containment and isolation of the affected systems;
Forensic investigation to determine the scope and cause of the breach;
Prompt notification to affected users and authorities, where legally required;
Post-incident remediation and process improvements to prevent recurrence.

We are committed to full transparency and will notify users of material breaches as soon as feasible under the applicable laws.

17. Children's Privacy and Minor Protection

At ATS Resume, we are firmly committed to protecting the privacy and safety of children and individuals below the age of majority as defined by applicable laws. Our platform, services, and offerings are intentionally designed and intended exclusively for use by individuals who are at least 18 years of age or older, or the legal age of majority in their jurisdiction. This section outlines our policy regarding minors and how we handle data that may be inadvertently collected from such individuals.

17.1 Services Not Directed to Minors

ATS Resume does not knowingly collect, solicit, or process personal data from children or minors under the age of 18. Our website, tools, packages, and communication channels are not designed to attract or engage individuals who do not meet the age eligibility criteria. We do not market our services to children, nor do we allow individuals below 18 to register, create profiles, submit resumes, or make payments on our platform.

If you are a parent or legal guardian and believe that your child has provided us with personal information without your consent, we urge you to contact us immediately using the Privacy Request Contact Form provided on our website. Upon verification, we will promptly delete the personal data of the minor from our systems and ensure that no further processing occurs.

17.2 Age Verification Measures

While we do not implement intrusive age verification technologies that collect additional data, we do incorporate affirmative representations during the sign-up process. Every user is required to declare that they are of legal age before proceeding to use any part of the platform, including account creation or purchase of resume services. Any misrepresentation of age constitutes a violation of our terms of use and may result in account termination without notice.

17.3 Compliance with Applicable Laws (e.g., COPPA, IT Rules)

Although our operations are primarily based in India, we adhere to globally recognized privacy frameworks such as:

The Children's Online Privacy Protection Act (COPPA) in the United States;
The Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 under Indian law;
Other relevant child protection laws in the jurisdictions in which we operate or serve users.

Under these laws, we are legally prohibited from collecting data from minors without verified parental consent, and we take proactive steps to ensure we are in full compliance.

17.4 Parental Control and Right to Request Deletion

Parents or guardians who suspect that their child's personal data has been inadvertently captured may:

Submit a deletion request using our contact form;
Request a description of the information collected (if any);
Ask for confirmation of any third-party disclosures (which, in accordance with our policy, should not occur);
Revoke any accidentally granted permissions regarding use or retention.

Such requests will be acted upon promptly and with utmost priority, subject to proper identity verification.

18. Your Privacy Rights (Jurisdiction-Based Rights and Legal Remedies)

At ATS Resume, we are committed to upholding the privacy rights of all our users, and we recognize that individuals may be entitled to specific rights under the data protection and privacy laws applicable in their jurisdiction. This section outlines your rights concerning the personal information we collect, store, process, and use, as well as the mechanisms through which you may exercise those rights.

We primarily operate under Indian law, particularly the Information Technology Act, 2000 and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011. However, we also strive to adhere to international best practices that govern data protection and user privacy, including frameworks such as the General Data Protection Regulation (GDPR) for EU residents and the California Consumer Privacy Act (CCPA) for California residents, to the extent applicable.

18.1 Right to Access Your Information

You have the right to request a detailed overview of the personal data we hold about you. Upon submitting a written request through our privacy contact form, we will provide:

A confirmation of whether your personal data is being processed;
The categories of personal data being processed;
The source of the data, if not directly collected from you;
The purpose and legal basis of such processing;
The entities, if any, with whom your data has been shared (e.g., hiring companies, upon your consent).

We will respond to such access requests within the legally permissible timeframe and free of charge unless otherwise permitted by law.

18.2 Right to Rectification

If you believe that any personal information we maintain about you is inaccurate, outdated, or incomplete, you have the right to request correction. You may:

Contact our support or privacy compliance team through the designated form;
Provide proof of the updated or corrected data (if necessary);
Request the update of relevant records and backups where feasible.

We will make reasonable efforts to verify the accuracy and legitimacy of the request before making any amendments to our systems.

18.3 Right to Erasure ("Right to be Forgotten")

You may request that your personal data be permanently deleted from our records in any of the following cases:

When the data is no longer necessary for the purpose for which it was collected;
If you withdraw your consent to processing (where applicable);
When the data has been unlawfully processed;
Upon account closure or termination of services;
If retention is no longer justified under applicable legal or regulatory obligations.

Please note that we may retain certain information if required to comply with legal obligations, enforce our agreements, or resolve disputes.

18.4 Right to Restrict Processing

You may request that we restrict the processing of your personal information under certain circumstances, including:

If you contest the accuracy of the data (pending verification);
If the processing is unlawful and you request restriction instead of erasure;
If you require the data for legal claims, even though we no longer need it for processing purposes.

In such cases, we will mark your information as "restricted" and suspend all non-essential uses of your data.

18.5 Right to Data Portability (If Applicable)

Where technically feasible, and to the extent required by applicable laws, we may provide you with a copy of your personal information in a structured, commonly used, machine-readable format. This right applies only when:

The data was provided directly by you.
The data is being processed based on your consent or for the performance of a contract.
The processing is carried out by automated means.

You may request this export to your records or to transfer your data to a third-party platform.

18.6 Right to Object

You have the right to object to the processing of your personal information if:

Processing is based on legitimate interests and you believe it infringes upon your fundamental rights and freedoms;
Processing involves direct marketing or profiling related to such marketing.

If such an objection is raised, we will cease the processing of your data unless we demonstrate compelling legitimate grounds that override your rights or are necessary for legal claims.

18.7 Right to Withdraw Consent

Where we rely on your consent to collect or process your personal data (e.g., in relation to cookies or sharing your resume with third-party employers), you may withdraw that consent at any time, without affecting the lawfulness of prior processing. This can be done by adjusting your cookie settings or submitting a withdrawal request via our privacy contact form.

18.8 Right to File a Complaint

If you believe that your data protection rights have been violated or that we have not handled your personal information in accordance with applicable laws, you have the right to file a complaint with the appropriate regulatory authority. In India, you may approach the Grievance Officer appointed under the IT Rules or file a complaint before the Adjudicating Officer under the Information Technology Act. Contact information will be provided in the final section of this policy.

19. Data Retention and Deletion Practices

At ATS Resume , we believe in practicing data minimization and purpose limitation by ensuring that we retain personal data only for as long as it is necessary to fulfill the legitimate purposes for which it was collected, including for legal, regulatory, contractual, or operational requirements. This section outlines how we determine appropriate retention periods, our data deletion protocols, and your ability to request deletion of your personal data.

19.1 Retention Principles

Provide you with access to our platform and deliver the services you have requested; Maintain accurate business and transaction records in accordance with applicable tax, corporate, and financial laws; Comply with mandatory legal obligations such as audits, investigations, or dispute resolution; Prevent fraud, enforce our agreements, and protect our legal rights. Where data is no longer required for any of the above purposes, it is securely deleted, anonymized, or aggregated for analytical use (in a non-identifiable form).

19.2 Specific Retention Periods

Although exact retention periods may vary based on the nature of the data and applicable laws, we generally adhere to the following timelines:

Type of Data	Retention Period
User account information	Retained for the duration of the account's existence + up to 3 years after termination (for record-keeping and legal compliance)
Resume content and associated documents	Retained for up to 2 years from date of last activity or upon user deletion request
Payment and billing data	Retained for a minimum of 7 years (in compliance with tax and financial regulations)
Communication logs (e.g., support chats)	Retained for up to 2 years for quality assurance and dispute resolution
Cookies and usage analytics	Retention periods vary by type, generally between 6 to 24 months based on consent and necessity

19.3 Deletion Requests by Users

You have the right to request deletion of your personal data at any time by contacting us via the Privacy Contact Form. Upon receipt of a verifiable deletion request:

We will identify all relevant records and systems where your data resides;
Permanently delete or irreversibly anonymize your personal data within a reasonable period (typically 30 days), unless retention is required by law;
Provide confirmation of data deletion, if requested.

In cases where immediate deletion is not feasible (e.g., backup archives), we will securely isolate your data from active processing until it is purged in the next scheduled deletion cycle.

19.4 Account Closure and Data Deletion

Your personal profile, resume documents, saved drafts, and preferences are marked for deletion; Any active job matching or candidate sharing will be immediately terminated; Data retained for legal or operational reasons will be stored in a secure and restricted environment. You may reopen a new account in the future, but historical data from the previous account will not be retrievable once deleted.

19.5 Retention of Anonymized or Aggregated Data

We may retain and use anonymized or aggregated data that cannot be used to identify you for:

Statistical analysis and market research;
Service optimization and algorithm improvement;
Business insights and strategy planning.

Such data is not subject to deletion requests as it no longer qualifies as personal information under applicable laws.

20. International Data Transfers

At ATS Resume, we are committed to ensuring the secure and lawful handling of your personal data, even when it is transferred across international borders. While our core operations are based in India, we leverage third-party services and technologies that may involve limited cross-border data processing. This section describes how we handle such transfers in compliance with applicable data protection regulations.

20.1 Nature of International Transfers

In the course of providing our resume-building and related services, your personal data may be transferred to, stored in, or accessed from jurisdictions outside your country of residence. These transfers may occur due to:

Integration with global hosting providers, cloud storage services, or CRM platforms that maintain servers in multiple jurisdictions;
Technical support, data analytics, or AI-driven tools operated by subcontractors or service providers located in other countries;
Controlled sharing of candidate information with verified hiring companies that may be internationally based (only with your express intent or participation in such hiring opportunities).

20.2 Safeguards for International Data Transfers

Whenever we transfer personal information internationally, we implement appropriate safeguards designed to ensure that your data remains protected under standards equivalent to those required by Indian law and internationally recognized data protection principles. These safeguards include:

Contractual Clauses: We enter into legally binding data processing agreements (DPAs) and standard contractual clauses (SCCs) with third-party vendors and partners to ensure that your data is handled securely and lawfully.
Vendor Due Diligence: We conduct thorough privacy and security assessments of any third-party services involved in data processing, especially those located outside India.
Access Controls & Encryption: Personal data is protected through secure transmission protocols (e.g., HTTPS, SSL) and encrypted storage to mitigate risks during cross-border handling.
Data Minimization: Only the minimum necessary personal data required for service delivery is transmitted across borders, and such transfers are made only when absolutely essential.

20.3 User Consent for Cross-Border Data Use

By using our platform and submitting your personal data to ATS Resume, you expressly acknowledge and agree that:

Your data may be transferred to, processed in, and stored outside your country of residence;
Such transfers are necessary for the fulfillment of our services, including resume creation, user support, platform optimization, and hiring partner communications;
The privacy protections provided in such jurisdictions may not be identical to the legal protections in your home country, but we have taken robust contractual and technical measures to ensure an adequate level of protection.

20.4 Candidate Information Shared with Hiring Companies

Where you opt-in to job-matching services or consent to have your resume reviewed by potential employers:

Your relevant profile information and resume details may be shared with companies located in or outside of India;
We will never share your contact or sensitive personal data with any hiring company unless required for the purpose of legitimate recruitment under your application;
ATS Resume will not be liable for how such companies use or retain the data once it has been transferred, though we strongly encourage all hiring partners to uphold privacy best practices.

20.5 Your Rights Regarding International Transfers

If you are concerned about how your data is transferred or wish to obtain more information about the applicable safeguards, you may:

Contact us through our Privacy Contact Form with specific queries;
Request a copy of the standard contractual clauses or other mechanisms we rely on to facilitate lawful transfers;
Withdraw your consent for international transfers at any time, understanding that doing so may impact your ability to access certain features or services.

21. Payment Processing & Financial Information Security

At ATS Resume, we take the protection of your financial information with the utmost seriousness. As part of our paid service offerings—including resume packages, personalized consultations, and premium application bundles—we collect payments exclusively through secure online channels. This section outlines how we manage your payment data, the third-party services we use, and the measures in place to safeguard all financial transactions on our platform.

21.1 Online Payment Gateways

All financial transactions conducted on the ATS Resume platform are processed via trusted third-party payment gateway providers. These gateways are fully compliant with international security standards, including:

PCI-DSS (Payment Card Industry Data Security Standard): A global security standard designed to ensure that all companies that accept, process, store or transmit credit card information maintain a secure environment.
SSL Encryption: All payment data transmitted through our site is encrypted using Secure Socket Layer (SSL) technology to prevent unauthorized access during transmission.

We do not directly store or access your complete credit card numbers, CVV, PIN, or banking credentials. All such sensitive information is processed exclusively through these compliant payment processors.

21.2 Types of Payment Data Collected

While ATS Resume does not store your complete financial details, the following non-sensitive payment-related information may be collected for operational and record-keeping purposes:

Payment transaction ID or reference number;
Billing name and partial card number (if permitted by the payment gateway);
Payment method (e.g., UPI, card, net banking, etc.);
Date and time of payment;
Amount paid and package details;
Status of transaction (successful/failed);
Email or mobile number used for transaction confirmation;
In some cases, tax-related information (GST details) for invoicing purposes.

21.3 Use of Payment Information

The limited payment-related information we collect is used strictly for:

Processing your purchase and activating the corresponding resume services;
Generating invoices or payment confirmations;
Providing support in the event of a transaction error or dispute;
Maintaining legal and financial records in compliance with applicable laws.

This data is never used for marketing purposes, nor is it shared with any third party other than the authorized payment service provider or regulatory bodies where legally required.

21.4 Fraud Prevention and Payment Security

To safeguard your financial interests, ATS Resume has implemented a layered fraud prevention and detection strategy, which includes:

Monitoring suspicious transactions;
Blocking high-risk IP addresses and automated bots;
Secure verification of identity during high-value transactions or refunds;
Logging of all payment activities with timestamps for accountability.

In the rare event that fraudulent activity is suspected, ATS Resume reserves the right to temporarily suspend access to services until identity or payment legitimacy is confirmed.

21.5 Refund Policy and Payment Disputes

Users who wish to raise concerns related to billing, incorrect charges, or payment disputes are encouraged to contact us through our Privacy & Billing Inquiry Form. We will respond within a commercially reasonable timeframe to investigate and resolve the issue in accordance with our refund and cancellation policies.

It is important to note that refunds, if applicable, are processed only after validation by our internal review team and as per the terms outlined at the time of purchase.

21.6 Your Responsibilities

By choosing to make a payment through ATS Resume, you represent and warrant that:

You are the lawful holder of the payment instrument used;
You provide accurate billing details to enable smooth transaction processing;
You will not use stolen or unauthorized financial data to make purchases on our platform.

Any attempt to defraud the platform or misuse payment channels will lead to immediate termination of your account and may result in legal action under applicable laws.

22. Data Retention and Deletion Policies

At ATS Resume, we are committed to retaining your personal data only for as long as it is necessary to fulfill the specific purposes for which it was collected, to comply with our legal obligations, to resolve disputes, and to enforce our contractual agreements. This section outlines our policies and procedures governing how long user data is kept, the rationale behind our retention practices, and the process by which users can request data deletion.

22.1 Data Retention Duration

The duration for which we retain your personal information depends on the type of data and the purpose for which it is processed:

Account and Profile Information: Personal data such as name, email address, account credentials, and profile preferences are retained for the duration of your account's existence and up to 24 months after account closure or inactivity, unless deletion is specifically requested.
Resume Content and Service History: Content related to resume creation, edits, reviews, and personalized recommendations is retained for up to 36 months after your last use of the service to facilitate re-engagement, enable easy access to your prior work, and provide customer support.
Payment and Transaction Records: Financial records, including invoices, tax documentation, and transaction logs, are retained for a minimum of 7 years, in accordance with applicable financial and regulatory obligations.
Communication Logs: Correspondence via contact forms, chat support, or email (including privacy and billing inquiries) may be retained for up to 24 months for quality assurance, dispute resolution, and service improvement purposes.

22.2 Criteria for Data Retention

In determining appropriate retention periods, ATS Resume considers several factors including, but not limited to:

The nature and sensitivity of the data collected;
Whether there is a legal obligation to retain certain types of data (e.g., financial records, compliance logs);
The need to provide users with access to their historical data (e.g., resume versions, feedback, service usage history);
Risk of misuse or unauthorized access if data is retained unnecessarily;
The legitimate interests of ATS Resume in maintaining business records and analytics for performance improvement.

We periodically review the data stored in our systems and safely purge any information that is no longer necessary.

22.3 Right to Request Deletion

We fully respect your right to request the deletion of your personal data under applicable privacy regulations. You may submit a request to delete your data using our Data Erasure Request Form , available via the Privacy Contact Form on our website.

Upon receiving a verified request, ATS Resume will:

Authenticate the Request: Verify your identity to prevent unauthorized deletion requests.
Assess Eligibility: Determine whether the data requested for deletion is subject to any retention obligations under law, contract, or legitimate business interest.
Erase the Data: If eligible, delete all relevant data from our primary systems and, where feasible, from backup systems within a maximum of 30 calendar days.

Please note: In certain circumstances, we may be legally or contractually required to retain specific information even after a deletion request—for instance, for tax audit purposes or dispute resolution.

22.4 Deletion of Account

Users who wish to delete their ATS Resume account entirely may do so by contacting us through the official support channels. Upon confirmation:

All identifiable user information will be removed from our active systems;
Resume drafts, history, and customizations will be permanently deleted;
You will receive a written confirmation once the deletion is completed.

Deactivation is irreversible and will result in the permanent loss of access to purchased services, saved data, and resume content unless otherwise preserved under legal obligation.

22.5 Data Backup and Archival

In the interest of service reliability and disaster recovery, ATS Resume maintains secure encrypted backups of its system data. These backups are stored in highly secure and access-restricted environments and are purged on a scheduled basis. Where deletion requests are processed, any associated personal data in backups will be overwritten and rendered inaccessible during the next scheduled purge, not exceeding 90 days from the initial deletion.

23. Your Rights Under Applicable Data Protection Laws

At ATS Resume, we are committed to upholding your rights and freedoms as a data subject under applicable privacy and data protection regulations. Whether you reside in India or another jurisdiction that enforces privacy laws (such as the EU's General Data Protection Regulation [GDPR], California Consumer Privacy Act [CCPA], or other regional frameworks), we recognize your entitlement to exercise control over your personal data. This section outlines the rights you have in relation to the personal data we collect, process, and store, along with how you may exercise them.

23.1 Right to Access Your Data

You have the right to request a copy of the personal data we hold about you, including:

Your profile and registration information;
Resume content and feedback history;
Transaction details and payment records;
Any correspondence or communication logs;
Technical logs (e.g., login history, device/browser used, IP address).

Upon submission of a verified request, we will provide you with a structured, commonly used, and machine-readable format of your data within 30 days, unless an extension is required under lawful grounds.

23.2 Right to Rectification (Correction)

If you believe that the data we hold about you is inaccurate, outdated, or incomplete, you have the right to request correction or update. You may correct basic information directly via your profile settings, or request administrative changes by contacting our Privacy Compliance Officer.

23.3 Right to Erasure (Right to be Forgotten)

You may request the deletion of your personal data when:

The data is no longer necessary for the purpose for which it was collected;
You withdraw consent and there is no other lawful basis for continued processing;
You object to processing and there are no overriding legitimate grounds;
The data was unlawfully collected or processed;
The data must be deleted to comply with a legal obligation.

If your deletion request meets these criteria and no exceptions apply, we will permanently erase your data from our systems and confirm completion.

23.4 Right to Restrict Processing

You have the right to request that we temporarily suspend processing of your personal data when:

The accuracy of your data is contested and is under review;
You object to processing, and we are considering our legitimate interests;
The processing is unlawful, but you do not wish for the data to be deleted;
You require the data to establish, exercise, or defend legal claims.

During this period, we will store your data securely but refrain from further processing until the matter is resolved.

23.5 Right to Data Portability

Where processing is based on consent or contract, and carried out by automated means, you may request to receive your data in a portable format and/or transmit it directly to another data controller. This applies specifically to resume content, profile information, and transactional data, where technically feasible.

23.6 Right to Object to Processing

You may object at any time to the processing of your personal data for:

Direct marketing (we will immediately cease such activity);
Profiling or automated decision-making that significantly affects you;
Processing based on legitimate interests, unless we can demonstrate compelling legal grounds for continuation.

23.7 Right to Withdraw Consent

If processing is based on your prior consent (e.g., job matching, promotional alerts, cookies), you may withdraw that consent at any time. Withdrawal will not affect the legality of processing already conducted before the withdrawal was made.

23.8 Right to Lodge a Complaint

If you believe your data rights have been violated or mishandled, you may:

Contact our Privacy Officer to resolve the issue informally;
Lodge a formal complaint with the appropriate Data Protection Authority (DPA) or government regulator in your jurisdiction;
Seek legal recourse where permissible under applicable law.

We are committed to responding to all complaints and privacy inquiries in a fair, lawful, and timely manner.

23.9 Exercising Your Rights

To exercise any of the above rights, you may submit a formal request via our:

Privacy Rights Request Form available in the user dashboard or at [Privacy Contact Page];
Or contact us directly via email at: privacy@atsresume.com

We may request additional verification information before processing your request, to ensure your identity and the security of your data. Requests will typically be addressed within 30 calendar days, unless otherwise required by law.

24. Contacting Us Regarding Privacy Matters

If you have any questions, concerns, or requests regarding this Privacy Policy, your personal information, or our data protection practices, we encourage you to contact us directly. Our commitment is to ensure your data is handled with transparency, integrity, and in full compliance with applicable laws.

24.1 Primary Contact for Privacy Inquiries

For all privacy-related matters, you may reach us through any of the following official channels:

Email: 📧 privacy@atsresume.com
(For formal data access requests, complaints, or policy-related questions.)
Contact Form:
You may submit a privacy concern, data deletion request, or other inquiry using the Privacy Contact Form located on our website at:
🔗 Contact Us

24.2 Response Timeframes

We aim to acknowledge receipt of all privacy requests within 7 business days and to provide a substantive response within 30 calendar days. If your request is complex or requires extended time to resolve, we will notify you of the delay along with a projected resolution date, as permitted by applicable law.

24.3 Designated Privacy Officer

ATS Resume has appointed an internal Privacy Compliance Officer responsible for overseeing our data protection strategy, ensuring compliance with this policy, and acting as a point of contact for regulators and individuals:

Privacy Officer
📧 privacy@atsresume.com
(Available Monday to Friday, 10 AM to 6 PM IST)

24.4 Dispute Resolution and Regulatory Authority

If you are unsatisfied with our response to a privacy inquiry, or believe your data has been misused or mishandled, you have the right to lodge a complaint with the appropriate Data Protection Authority in your country or region.

For users in India:
Complaints may be directed to the Grievance Officer under the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021.

How We Collect, Use, and Protect Your Data