Privacy Policy

Last updated: January 2026

1. Introduction

CoverLetter Master ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our AI-powered cover letter generation service.

We comply with the Protection of Personal Information Act (POPIA) of South Africa and the General Data Protection Regulation (GDPR) where applicable.

2. Information We Collect

Account Information

When you create an account, we collect your name and email address. This information is used to identify your account and communicate with you about our services.

CV Data

How we handle your CV:

  • Your CV file is processed in your browser - we do not store the original file
  • The extracted text content is sent to OpenAI (GPT-4o-mini) to generate your cover letter
  • We do not permanently store your CV text in our database or logs
  • OpenAI processes this data according to their privacy policy

Generated Cover Letters

We may store your generated cover letters to provide you with a history feature. You can delete these at any time from your account settings.

Usage Data

We collect usage data linked to your account to provide and improve our service, including: number of cover letters generated, credits used, feature usage, and activity timestamps. This data helps us provide your account history and improve the service.

3. How We Use Your Information

  • To provide and maintain our cover letter generation service
  • To process your account and manage your credits
  • To send you service-related communications
  • To improve our AI and user experience
  • To detect and prevent fraud or abuse

4. Third-Party Services

We share data with the following third-party services to provide our service:

  • OpenAI (AI Processing): Your extracted CV text and job descriptions are sent to OpenAI's GPT-4o-mini model to generate cover letters. OpenAI processes this data according to their privacy policy.
  • Firebase (Authentication): We use Google Firebase for secure authentication. Your email and authentication data are processed according to Firebase's privacy policy.
  • PayFast (Payment Processing): Payments are handled securely by PayFast. We do not store your payment card details. See PayFast's privacy policy.
  • Email Services: We use SMTP email services to send transactional emails (verification, password reset, notifications).

5. Data Retention

We retain your account information for as long as your account is active. You may request deletion of your account and all associated data at any time through your account settings or by contacting us.

6. Your Rights

Under POPIA and GDPR, you have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Object to processing of your data
  • Request data portability
  • Withdraw consent at any time

7. Security

We implement appropriate technical and organisational measures to protect your personal data, including encryption in transit (HTTPS) and secure authentication practices.

8. Cookies

We use essential cookies to maintain your session and preferences. We do not use third-party tracking cookies for advertising purposes.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by email or through a notice on our website.

10. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us:

Email: privacy@coverlettermaster.com

Back to Home