Privacy Policy

Effective date: May 23, 2026

1. Who we are

TrueRung ("TrueRung", "we", "us") is operated by FunctionalLogics. This Privacy Policy explains what information we collect when you use truerung.com (the "Service"), how we use it, who we share it with, and what rights you have over it.

If you have questions about this policy or our handling of your data, contact us at support@truerung.com.

2. What we collect

Account information

When you sign up we store the email address you sign in with. Authentication uses a one-time magic link.

Your target and CV content

You declare a career target (level + domain + optional context) which we store on your account. When you analyse a CV, the PDF is parsed in your browser's network request and the extracted text is sent to our server in-memory. The raw CV text is never persisted server-side. We process it for a single request and discard it. Only the structured analysis result is stored.

Before any analysis, we do our best to remove personally identifiable details from your CV.

Job descriptions

When you check a job match, the full job-description text you paste is stored on your account so you can revisit it later without re-pasting. We treat JDs as public-facing marketing copy. Users should not paste confidential or internal recruiting materials unless authorised to do so.

Generated content

Analyses, job-match results, CV tailorings, interview prep, and the version history of those artifacts are stored on your account.

Payment information

When you purchase a credit pack, payment is processed by Stripe. We do not see or store your card number. Stripe returns a session reference that we record alongside the credits granted to your account.

Technical data

We log IP addresses for rate-limiting and abuse prevention. We log error reports (including stack traces and route paths, but not CV content) for diagnostics. We do not use third-party analytics or advertising trackers.

3. How we use your information

We use your information to:

  • Produce analyses, match results, tailorings, and interview prep against your declared target.
  • Process your payments and grant credits to your account.
  • Communicate transactional messages (sign-in links, payment receipts).
  • Maintain service reliability by rate-limiting abusive traffic, diagnose errors, prevent fraud.
  • Comply with legal obligations.

We do not use your CV content, analysis results, or any account data to train AI models. We do not sell your data, and we do not share it for marketing.

4. Who we share with

We share data with the following processors strictly to the extent needed to deliver the Service. None of these processors is permitted to use your data for their own purposes.

  • AI providers: to generate analyses, tailoring, and interview-prep outputs. These providers do not use API inputs to train their models.
  • Stripe: payment processing.
  • Infrastructure and hosting providers: to run the application securely, store account data, and deliver transactional emails.

We may disclose information when required by law, to enforce our Terms, or to protect the rights, safety, and property of users and the public.

5. Data retention

  • CV text: never retained. Processed in-memory and discarded after the response is sent.
  • Account, analyses, matches, tailorings, prep, target settings: retained until you delete your account.
  • Purchase records: retained for as long as required by applicable accounting and tax law.
  • Logs and error reports: retained for a maximum of 30 days unless flagged for security investigation.

6. Your rights

If you are located in a jurisdiction with applicable data- protection laws (including the EEA or UK), you have the following rights:

  • Access: request a copy of the data we hold about you.
  • Correction: ask us to correct inaccurate data.
  • Deletion: you can permanently delete your account and all associated data from your Account page. Account deletion is immediate and irreversible.
  • Portability: request your data in a machine-readable format.

7. International transfers

Our processors (above) operate infrastructure outside the European Economic Area, including in the United States. Where data is transferred outside the EEA, we rely on Standard Contractual Clauses (SCCs) or equivalent safeguards approved under GDPR Article 46.

8. Cookies and similar technologies

We use strictly necessary cookies required for authentication and session management. Because these cookies are necessary for the operation of the Service, they cannot be disabled through our interface. We do not use advertising, marketing, or third-party analytics cookies.

9. Children

The Service is intended for adults working in software engineering. We do not knowingly collect data from children under 16. If you believe a child has provided us data, contact us and we will delete it.

10. Changes to this policy

We may update this policy from time to time. Material changes will be communicated by email or by a prominent notice in the Service before they take effect. The "Effective date" at the top of this page reflects the current version.

11. Contact

Privacy questions, data requests, complaints:
support@truerung.com

Privacy Policy — TrueRung