1. Scope; Controller
This Privacy Policy applies to personal information processed in connection with: (a) the AceIt Interview website and related web properties; (b) user accounts and authenticated web experiences; (c) the AceIt desktop browser application; and (d) related customer support, billing, and communications. By using these properties, you acknowledge the practices described in this Privacy Policy.
For purposes of the EU and UK General Data Protection Regulation and similar laws, where AceIt determines the means and purposes of processing, AceIt acts as a controller with respect to personal information described herein, unless a separate data processing agreement designates AceIt as a processor (for example, under an enterprise contract).
2. Personal Information We Collect
We may collect the following categories of personal information, depending on your interaction with us:
- Identifiers and account data. Name, email address, account identifiers, and similar contact details you provide during registration or support interactions.
- Authentication and security data. Password hashes, session tokens, device or application identifiers used to maintain secure sessions across web and desktop clients, and information related to multi-factor authentication.
- Payment and subscription data. Subscription tier, plan identifiers, trial status, billing history metadata, and payment-related identifiers processed by our payment processor, Stripe. AceIt does not receive or store full payment card numbers.
- Professional and application content. Curriculum vitae, résumés, job descriptions, and other documents or text you upload for use with the Services.
- Service usage and interview-related content. Interview session metadata (such as titles and timestamps), transcript events, prompts and outputs submitted through our APIs or application interfaces, and technical logs required to operate and secure the Services.
- Communications. Records of correspondence when you contact us via email or web forms, including the content of your message and associated metadata.
3. Sources of Personal Information
We obtain personal information:
- directly from you when you register, subscribe, upload content, or communicate with us;
- automatically when you use the Services (for example, through application telemetry reasonably necessary for security and reliability); and
- from payment processors and authentication providers as needed to complete transactions or verify identity.
4. Purposes of Processing
We process personal information for the following purposes, as permitted by applicable law:
- Contract performance. To create and administer your Account, authenticate sessions, provide features you request, and process payments.
- Service improvement and security. To monitor usage for plan enforcement, detect abuse, debug errors, and protect the integrity of the Services.
- Communications. To send transactional messages (for example, verification, invoices, password reset) and, where permitted, service-related notices.
- Product workflows. To provide transcription, session management, browser-assisted workflows, and related features. As of the effective date above, AceIt does not send your prompts or User Content to third-party generative AI model providers through AceIt-operated server-side API calls; processing by such providers occurs, if at all, only when you use Third-Party Services with your own account inside the AceIt client, under those providers' terms.
- Legal compliance. To comply with applicable law, respond to lawful requests, and establish, exercise, or defend legal claims.
Where required by law, we rely on your consent for certain activities (for example, non-essential cookies or marketing communications, if offered). You may withdraw consent where applicable without affecting the lawfulness of processing based on consent before withdrawal.
5. Disclosure of Personal Information
We may disclose personal information to the following categories of recipients:
- Service providers and subprocessors. Hosting providers, database and storage vendors, email delivery services, payment processors (including Stripe), security vendors, and analytics providers acting under contractual obligations to process data only on our instructions.
- Future subprocessors. If AceIt introduces server-side integrations with generative AI or other model providers, we will update this Policy to identify those recipients and processing activities. As of the effective date above, AceIt does not disclose personal information to such vendors for that purpose.
- Legal and regulatory authorities. When required by law, legal process, or to protect rights, safety, or property.
- Business transactions. In connection with a merger, acquisition, financing, or sale of assets, subject to confidentiality obligations where applicable.
When you authenticate to third-party AI or conferencing platforms within the AceIt desktop client, your interactions with those platforms are governed by the third parties' privacy notices, not this Policy, with respect to data collected directly by them.
We do not sell personal information for monetary consideration as the term "sell" is commonly understood under U.S. state privacy laws.
6. Retention
We retain personal information for as long as reasonably necessary to fulfill the purposes described in this Policy, unless a longer retention period is required or permitted by law. Criteria used to determine retention periods include the nature of the data, the purposes of processing, contractual obligations, and legal, tax, or regulatory requirements. Following deletion requests subject to applicable exceptions, we may retain residual copies in backups for a limited period consistent with our security and disaster recovery practices.
7. Security
We implement technical and organizational measures designed to protect personal information against unauthorized access, loss, misuse, or alteration. These measures include encryption in transit, access controls, and secure credential storage practices. No system is completely secure; please use strong passwords and safeguard your devices.
8. Your Privacy Rights
Depending on your jurisdiction, you may have rights to access, rectify, delete, restrict processing, object to processing, or port personal information, and to lodge a complaint with a supervisory authority. To exercise applicable rights, contact us at contact@aceitinterview.com with "Privacy Request" in the subject line. We may verify your identity before fulfilling a request and will respond in accordance with applicable law.
9. International Processing
AceIt operates in the United States and may process personal information in the United States or other countries where we or our service providers maintain facilities. Where required, we implement appropriate safeguards for cross-border transfers consistent with applicable law (for example, standard contractual clauses approved by relevant authorities).
10. Children's Privacy
The Services are not directed to individuals under sixteen (16) years of age, and we do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us and we will take appropriate steps to delete such information as required by law.
11. U.S. State Privacy Notices
Residents of certain U.S. states may have additional rights under applicable state privacy laws (including, where applicable, rights to know, delete, correct, and opt out of certain processing). To submit a request, contact contact@aceitinterview.com. We will not discriminate against you for exercising privacy rights afforded by law. You may designate an authorized agent to submit a request where permitted by law, subject to verification requirements.
12. Changes to this Policy
We may update this Privacy Policy from time to time. We will post the revised Policy on the Services and revise the effective date above. Where changes materially affect your rights, we will provide notice or obtain consent as required by law. Your continued use of the Services after the effective date of changes constitutes your acknowledgment of the updated Policy where permitted by law.
13. Contact
For questions regarding this Privacy Policy or AceIt's privacy practices, contact contact@aceitinterview.com or use the contact form at /contact.