Privacy Policy

Last updated: May 9, 2026

What ProductResume does

ProductResume is a free tool that evaluates Product Manager resumes. It offers two modes: a standalone Resume Scorer that evaluates your resume against PM best practices (no job description needed), and a Job Fit that scores how well your resume matches a specific job description and generates a tailored referral message.

What data is collected

For anonymous users (no sign-in):

  • If you upload a PDF resume, the text is extracted on our server and the PDF file is immediately discarded. The original file is never stored.
  • Your resume text and job description text are sent to an AI provider for analysis. For anonymous users, this data is not stored on our servers after the analysis completes.
  • Your analysis result is stored only in your browser (localStorage) so it can be saved if you sign up later. If you close the browser, it is gone.
  • If you share your report, a copy of the analysis result and your resume text is saved to our database with a unique token. Anyone with the share link can view the report. Your name (if detected in the resume) is stored alongside the shared report.
  • Google Analytics collects anonymous usage data (page views, button clicks, feature usage). No personally identifiable information is collected through analytics.

For signed-in users (Google or email/password):

  • If you sign in with Google: name, email address, and profile picture from your Google account.
  • If you sign up with email: your name, email address, and a securely hashed version of your password. Your plaintext password is never stored.
  • Your resume text (extracted from PDF or pasted) and job description text are stored with each analysis so you can return and continue editing. The original PDF file is never stored.
  • Your analysis reports (scores, dimension breakdowns, resume tips, referral messages) and AI-fixed resume versions are stored so you can access your history and track score progression.
  • Your name is automatically extracted from your resume text and stored with each report for display and grouping purposes.
  • If you share a report, a unique token is generated. Anyone with the resulting link can view that report without signing in.

How data is used

  • Before your resume is sent to AI providers for analysis, personal contact information (email addresses, phone numbers, and URLs such as LinkedIn or GitHub profiles) is automatically stripped. The AI never sees your contact details.
  • Resume and job description text (with contact info removed) are sent to AI providers (OpenAI, Anthropic) to generate your analysis and, when you use "Fix using AI," to generate an improved version of your resume. These providers process the data via their API services, which have zero data retention policies for API usage. Your data is not used to train their models.
  • Google account information is used only to identify you and display your profile in the app.
  • Email and password (for email sign-up) are used only for authentication. Passwords are hashed with bcrypt before storage.
  • Resume text and JD text are stored with reports to enable the re-analyze workflow (pre-filling the editor with your previous inputs). The stored version retains your contact details for your own use.
  • Report history is stored only to let you view past analyses and track score progression.
  • Shared report links make a single report publicly accessible via a unique URL. Only the specific report you share is visible. The link does not expose your account, other reports, or any data beyond that one analysis.
  • Analytics data is used to understand how the tool is used and improve it.
  • Your email address is shared with Resend solely for delivering transactional emails (sign-up confirmation, purchase confirmation, report delivery). These are not marketing communications.
  • Report-ready emails include an unsubscribe option. You will never receive marketing emails without explicit opt-in.

What we don't do

  • Your data is never sold to third parties.
  • Your resume and job description are not used to train AI models.
  • Your email is not used for marketing unless you explicitly opt in.

Data storage and security

Signed-in user data is stored on secure, encrypted infrastructure provided by Vercel and Neon. Passwords are hashed using bcrypt with a cost factor of 10 before storage. Plaintext passwords are never stored or logged. Anonymous analysis data (resume and JD text) is not stored after the analysis is complete.

Data deletion

You can delete individual reports from your report history at any time. To request full deletion of your account and all associated data (including your user record, stored resume texts, and all reports), contact the developer. Upon deletion, all stored reports, resume/JD texts, and account information will be permanently removed.

Third-party services

  • Google OAuth for sign-in (optional, email/password also available)
  • OpenAI and Anthropic for AI analysis
  • Razorpay for payment processing (credit/debit cards, UPI, net banking)
  • Resend for transactional email delivery
  • Neon for database hosting
  • Google Analytics for usage analytics
  • Vercel for hosting

Contact

For questions about this privacy policy or to request data deletion, use our contact form.