Privacy Policy
Last updated: June 2026
1. Introduction
Zipply is an AI-powered resume tailoring service built for college students. We help you adapt your resume to specific job descriptions, score it against applicant tracking systems, and convert it to professional formats. The service is operated by Zipply (“we,” “us,” or “our”).
This Privacy Policy explains what information we collect, how we use it, and the choices you have. By using Zipply, you agree to the practices described here. If you have any questions, contact us at support@zipply.dev.
2. Information We Collect
- Account information: your email address, display name, and phone number (used only for identity verification).
- Resume content: the resumes you upload or paste, and the tailored versions we generate. This content is stored encrypted with AES-256-GCM.
- Activities and profile context: additional context you provide about your experience and activities, also stored encrypted.
- Usage data: tailoring counts, ATS scores, and feature usage, used to enforce plan limits and improve the service.
- Payment information: payments are processed by Stripe. Zipply never stores your card details.
- Technical data: session tokens, cookies, and IP addresses used for authentication and rate limiting.
3. How We Use Your Information
- To provide and improve the Zipply service.
- To process payments through Stripe.
- To send transactional emails, such as welcome messages, upgrade confirmations, and usage summaries.
- To send SMS verification codes via Twilio. These are one-time messages only — we never send marketing SMS.
- To prevent fraud and abuse of the service.
4. Data Storage and Security
Your resume content, activities, and profile context are encrypted at rest using AES-256-GCM. Data is stored in Supabase (PostgreSQL) with row-level security, so your data is only accessible to your account. All traffic to and from Zipply is encrypted in transit with HTTPS.
5. Third-Party Services
We rely on a small set of trusted providers to operate Zipply:
- Supabase — database and authentication.
- Stripe — payment processing. See stripe.com/privacy.
- Anthropic — AI resume tailoring. Your resume and job description are sent to Anthropic to process your requests and are not stored by Anthropic.
- Cloudflare — security, DDoS protection, and Turnstile bot verification.
- Twilio — SMS delivery for one-time verification codes only.
- Resend — transactional email delivery.
6. Data Retention
We retain your data for as long as your account is active. If you delete your account, all of your data is permanently deleted within 30 days. You can delete your account at any time from the Settings page.
7. Your Rights
You can access your resumes, tailoring history, and profile data directly from your dashboard. You can delete your account and all associated data from the Settings page. For any other requests regarding your data, contact us at support@zipply.dev.
8. SMS Communications
Phone numbers are used solely for one-time verification codes. We do not send marketing or promotional SMS. Message and data rates may apply. Reply STOP to opt out of SMS messages. Reply HELP or contact support@zipply.dev for help.
9. Mobile Number Non-Sharing Statement
Zipply does not share, sell, or disclose mobile phone numbers to third parties for marketing purposes. Phone numbers are used solely for identity verification via one-time SMS codes.
10. Contact Us
If you have questions about this Privacy Policy or how we handle your data, email us at support@zipply.dev.