Privacy Policy

1. Scope and Controller Information

This Policy applies to personal information processed through our public website, authentication flows, dashboards, and coaching modules, including CV analysis, interview practice, speech analysis, work simulations, and self-advocacy modules.

If you access the Services through an organization (for example, an employer, school, or program), that organization may also control some aspects of your data. In those cases, we process information according to our contractual obligations and the organization's instructions.

2. Information We Collect

We collect information you provide directly, information generated through your use of the Services, and limited technical data from your browser or device.

• Account and identity data: name, email, login credentials, organization affiliation, and related account records.
• Profile and demographic data you choose to provide, including details such as date of birth, gender, education level, or other personal profile information.
• Career content: CVs/resumes, employment history, certifications, project details, skills, references, and module preferences.
• Module input data: free-text answers, uploaded documents, selections, goals, notes, and engagement responses.
• Voice and communication data: voice recordings created in modules, speech samples, and transcripts generated from those recordings.
• Model-derived metrics and inferences: communication quality indicators, fluency patterns, pacing, interaction performance, and cognitive ability signals generated by our models to personalize user engagement.
• Operational and technical data: IP address, device/browser metadata, session logs, feature usage events, timestamps, and security telemetry.

3. How We Use Personal Information

We process personal information only for legitimate service purposes, including:

• Creating and maintaining your account, identity, and secure access.
• Delivering core features such as CV analysis, transcript generation, voice feedback, simulation scoring, and module progression.
• Personalizing user engagement, learning flow, and recommendations based on submitted content and model-derived insights.
• Monitoring reliability, debugging issues, preventing abuse, and protecting platform security.
• Responding to support requests and operational communications.
• Meeting legal obligations, enforcing agreements, and defending legal rights.

We do not sell, rent, lease, trade, broker, or otherwise resell personal information to third parties for advertising or data brokerage purposes.

4. Legal Bases for Processing

Depending on your location, we may process personal information based on one or more of the following legal grounds: performance of a contract, your consent, legitimate interests (such as service security and product improvement), and compliance with legal obligations.

5. Voice Recordings, Transcripts, and Model Inferences

Certain modules are designed around audio and communication coaching. By using those modules, you acknowledge and instruct us to process voice recordings and transcripts, and to generate model-based communication and cognitive indicators to support engagement outcomes.

• Audio and transcript processing is used to provide feedback, scoring, and progress experiences inside the Services.
• Model-generated indicators are used for engagement and coaching purposes; they are not sold as third-party data products.
• You should avoid submitting highly sensitive data unless required by the module and supported by your use case.

6. How We Share Information

We share data only when needed to operate the Services or where required by law. Categories of recipients may include:

• Infrastructure and technical processors (for hosting, storage, security, and analytics) under contractual confidentiality obligations.
• Integrated model and communications providers strictly to deliver requested features (for example, transcription or model inference).
• Your organization or administrator if your account is sponsored or managed by that organization.
• Legal authorities or counterparties when required to comply with law, court orders, or to protect rights and safety.
• Successors in a merger, acquisition, financing, or asset transfer, subject to standard confidentiality and notice requirements.

7. Data Retention

We retain personal information for as long as reasonably necessary to provide Services, maintain engagement history, satisfy legal and audit obligations, resolve disputes, and enforce agreements. Retention periods vary by data type and account status. When information is no longer needed, we delete, anonymize, or de-identify it using commercially reasonable practices.

8. Security

We implement administrative, technical, and organizational safeguards designed to protect personal information against unauthorized access, loss, misuse, or alteration. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

9. International Data Transfers

We may process or store information in jurisdictions different from where you live. Where required, we use appropriate transfer mechanisms and contractual safeguards to protect personal information in cross-border transfers.

10. Your Privacy Rights and Choices

Subject to applicable law, you may have rights to request access, correction, deletion, portability, restriction, or objection to processing. You may also have rights related to automated decision-making and to withdraw consent where consent is the legal basis.

To exercise rights, contact us at hello@mythorneai.com. We may need to verify your identity before completing certain requests.

11. Children's Privacy

The Services are not directed to children under the age required by local law to provide independent consent. Where minors use the Services through an organization or guardian-supported program, use must occur under authorized supervision and applicable agreements.

12. Changes to This Policy

We may update this Policy from time to time to reflect legal, operational, or product changes. Material updates will be posted on this page with an updated "Last updated" date. Continued use of the Services after changes become effective means you acknowledge the revised Policy.

13. Contact

For privacy requests or questions, email hello@mythorneai.com or use the Contact page.