Last updated: May 7, 2026
Your resume is personal. We treat it that way. Here’s the short version, in plain English:
We don't sell your data. Not to recruiters, not to data brokers, not to anyone. We have never sold user data and we will never sell user data. There is no version of our business where that changes.
We don't train AI models on your resume. When ResumeWriting.com sends your resume to Anthropic’s Claude API to generate a tailored version, that transmission happens under a Zero Data Retention agreement. Anthropic does not store your resume after the response is returned, and Anthropic does not use your resume to train its models. We don’t train models on your data either — we don’t operate any models.
Your resume is encrypted before it touches our database. We use AES-256-GCM encryption with a per-user key, managed through AWS Key Management Service. Even our own database admins can’t read your resume content directly — decryption requires a key check that gets logged every time it happens.
You can delete everything. Your account, your resumes, your tailorings, your history. From your account settings, in one click. When you delete, it’s gone from our active systems within 24 hours.
You own your resume. Anything you upload, anything we generate for you — it’s yours. Use it however you want. We don’t claim any ownership over the content of your career.
That’s the spirit of how we handle your data. The rest of this page covers the specifics, the third parties involved, and your formal rights.
This Privacy Policy explains how EditMeNow.com, Inc. (“we,” “us,” or “our”) collects, uses, stores, and shares information when you use ResumeWriting.com (the “Service”). By using the Service, you agree to this policy. If you do not agree, do not use the Service.
Account information. When you create an account, we collect your email address and authentication identifiers (such as a Google OAuth ID, if you sign in with Google). We do not store passwords — authentication is handled through Supabase using magic links or single sign-on.
Resume and job description content. When you upload a resume or paste a job description, we store that content, encrypted, so we can generate tailored output and so you can return to your tailorings later.
Tailored output. The resumes we generate for you are stored in your account, encrypted, until you delete them.
Usage and diagnostic data. We collect basic usage information (page visits, feature interactions, error reports) to operate and improve the Service. This is captured through Sentry (error monitoring) and Vercel (hosting analytics). We do not use third-party advertising trackers on logged-in pages.
Payment information. When you subscribe to a paid plan, payment is processed by Stripe. Stripe collects and stores your payment details directly — we never see your full card number. We receive a customer ID and subscription status from Stripe so we can manage your access.
We use your information to:
We do not use your resume content to train AI models, generate aggregate insights for sale, or for any purpose beyond delivering the Service to you.
We share information only with the third-party services we need to run the product:
We do not share your information with advertisers, data brokers, recruiters, employers, or any party outside the operational stack listed above. We do not sell information.
We may disclose information if required by law (subpoena, court order, lawful government request) or if necessary to protect the rights, safety, or property of our users, ourselves, or the public. If we ever receive such a request, we will challenge requests we believe are overbroad and notify affected users where legally permitted.
Resume content and tailored output are encrypted at rest using AES-256-GCM with per-user data encryption keys, managed through an envelope encryption scheme backed by AWS KMS. Every decryption is logged to an internal audit table.
Data is encrypted in transit using TLS. Authentication tokens are short-lived. Production database access is restricted to a small number of administrators and is logged.
No system is perfectly secure, and we cannot guarantee absolute security. But we have built the system so that the easy paths to a data breach — a stolen database, a leaked backup, an insider with read access — do not expose your resume content in plaintext.
We keep your account and content for as long as your account is active. When you delete your account, we remove your content from active production systems within 24 hours. Encrypted backups may persist for up to 30 days before being purged on the standard backup rotation. After 30 days, your content is gone from our systems entirely, except for records we are legally required to retain (such as billing records for tax purposes).
You can delete individual resumes or tailorings at any time from your account without deleting your whole account.
You can:
If you are a resident of California, the EU, the UK, or another jurisdiction with specific data rights, those rights apply to you. To exercise any of them — including requests for access, correction, deletion, or portability beyond what the account UI provides — email help@resumewriting.com and we will respond within 30 days.
The Service is not directed to children under 18 and we do not knowingly collect information from anyone under 18. If you believe a child has created an account, contact us at help@resumewriting.com and we will remove the account.
The Service is operated from the United States. If you use the Service from outside the United States, your information will be transferred to and processed in the United States, where data protection laws may differ from those in your country.
We may update this Privacy Policy from time to time. If we make material changes, we will notify you through the Service or by email and update the “Last updated” date at the top of this page. Continued use of the Service after changes take effect constitutes acceptance.
Questions, requests, or concerns about privacy? Email help@resumewriting.com.