Back to Fursa

Privacy Policy

Last updated: May 31, 2026

Cravid Labs LLC is the operator of Fursa (usefursa.com). Cravid Labs LLC is a Wyoming limited liability company with its principal place of business at 30 N Gould St, Ste R, Sheridan, WY 82801, United States.

Fursa (“Fursa,” “we,” “our,” or “us”) is operated by Cravid Labs LLC, a Wyoming limited liability company, who acts as the data controller for the purposes of the EU and UK General Data Protection Regulation. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform at usefursa.com and any related services (collectively, the “Service”). Please read this policy carefully. If you disagree with its terms, please discontinue use of the Service.

Lawful Bases for Processing (GDPR)

Where the European or UK General Data Protection Regulation applies, we rely on the following lawful bases to process your personal data:

  • Performance of a contract (Art. 6(1)(b)): Account creation, resume parsing, tailored resume generation, job matching, auto-apply, and billing — each is necessary to deliver the Service you requested.
  • Legitimate interests (Art. 6(1)(f)): Security monitoring, abuse prevention, product analytics in aggregate, and improving the Service. We balance these interests against your rights and freedoms.
  • Consent (Art. 6(1)(a)): Optional marketing emails, non-essential cookies, and certain features that exceed the contractual purpose. Consent can be withdrawn at any time without affecting prior lawful processing.
  • Compliance with a legal obligation (Art. 6(1)(c)): Tax record-keeping, fraud-prevention reporting, and responding to lawful requests from regulators or law enforcement.

A more detailed mapping of lawful bases to specific processing activities is available in our Data Compliance Notice.

1. Information We Collect

We collect information you provide directly to us and information generated through your use of the Service.

1.1 Account & Identity Information

  • Full name and email address (required to create an account)
  • Password (stored as a salted hash; we never store plaintext passwords)
  • Profile photo (optional)

1.2 Resume & Career Data

  • Uploaded resume files (PDF, DOCX, or image formats)
  • Parsed resume content: work history, education, skills, certifications, achievements
  • Job preferences: target roles, industries, locations, salary expectations, remote/hybrid preferences
  • Cover letter drafts and AI-generated application materials associated with your account

1.3 Usage & Technical Data

  • Pages visited, features used, and actions taken within the Service
  • IP address, browser type, operating system, and device identifiers
  • Referring URLs and session duration
  • Log data including timestamps of requests and error reports
  • Cookies and similar tracking technologies (see Section 8)

1.4 Communications

  • Messages you send to our support team
  • Feedback, survey responses, and feature requests

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Service delivery: Creating and managing your account, parsing your resume, generating ATS-tailored application materials, matching you to relevant job listings, and submitting applications on your behalf.
  • Personalization: Tailoring job recommendations, resume suggestions, and cover letter templates based on your career profile and preferences.
  • Notifications: Sending you application status updates, job match alerts, and account-related notifications via email or in-app messages.
  • Product improvement: Analyzing aggregated usage patterns to improve the accuracy of our AI models, the relevance of job matches, and the overall quality of the Service.
  • Security & fraud prevention: Detecting, investigating, and preventing fraudulent transactions, unauthorized access, and other illegal activities.
  • Legal compliance: Fulfilling our obligations under applicable law, responding to lawful requests from public authorities, and enforcing our Terms of Service.

3. How We Share Your Information

We do not sell your personal data. We share information only in the following circumstances:

  • Anthropic (AI processing): Resume content and job description data are transmitted to Anthropic’s API to generate tailored resume bullets and cover letters. Anthropic processes this data subject to their own privacy policy and API usage terms. Under Anthropic’s API terms, data sent through the API is not used to train Anthropic’s models. We rely on this commitment from Anthropic and do not separately use your data to train any AI models.
  • Stripe (payments & billing): When you subscribe to a paid plan, your billing name, email address, and billing address are processed by Stripe, Inc., a PCI DSS Level 1 certified payment processor located in the United States. Card details are submitted directly to Stripe and are never stored by Fursa.
  • Supabase (database & authentication): Your account data, profile information, and application history are stored in our Supabase-hosted PostgreSQL database. Supabase provides encryption at rest and in transit.
  • Railway / Vercel (hosting & infrastructure): Our API and web application are hosted on Railway and Vercel respectively. These providers may process request data in the course of serving the application.
  • PostHog (product analytics): We use PostHog to understand feature usage and improve the product. Analytics events may include page views and feature interactions. Email addresses are omitted from PostHog events when the NEXT_PUBLIC_POSTHOG_OMIT_EMAIL flag is enabled. PostHog data is not used for advertising.
  • Resend (transactional email): We use Resend to deliver account notifications and application alerts. Your email address is shared with Resend solely for this purpose.
  • Legal requirements: We may disclose your information if required to do so by law, court order, or governmental authority, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
  • Business transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you via email and a prominent notice on the Service before your information becomes subject to a different privacy policy.

4. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Service. If you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required to retain it for legal, tax, or fraud-prevention purposes (typically up to 7 years for financial records). Aggregated, de-identified analytics data may be retained indefinitely.

5. Your Rights & Choices

Depending on your location, you may have the following rights regarding your personal data. To exercise any of these rights, please contact us at legal@usefursa.com.

  • Access: Request a copy of the personal data we hold about you.
  • Rectification: Request that we correct inaccurate or incomplete data.
  • Erasure: Request deletion of your personal data (subject to legal retention requirements).
  • Portability: Receive a machine-readable export of your data to transfer to another service.
  • Restriction: Request that we restrict processing of your data while a dispute is resolved.
  • Objection: Object to processing based on legitimate interests.
  • Withdraw consent: Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

We will respond to verified requests within 30 days (or 45 days where permitted by law).

6. Cookies & Tracking Technologies

We use the following types of cookies and similar technologies:

  • Essential cookies: Required for authentication, session management, and security. Cannot be disabled.
  • Analytics cookies: PostHog cookies that help us understand how users interact with the Service. You may opt out by adjusting your browser settings or using the PostHog opt-out mechanism.

We do not use advertising cookies or cross-site tracking pixels. You can control cookies through your browser settings, but disabling essential cookies may prevent some features from functioning correctly.

7. Children’s Privacy

The Service is not directed to individuals under the age of 13. We do not knowingly collect personal data from children under 13. If we become aware that a child under 13 has provided us with personal data, we will delete such information promptly. If you believe a child under 13 has submitted information to us, please contact us at legal@usefursa.com.

European Economic Area: The minimum age may be higher in some jurisdictions. Within the European Economic Area, the minimum age to consent to data processing without parental authorization varies by member state from 13 to 16 under GDPR Article 8. We require all users to be 16 or older if residing in an EEA member state where 16 is the applicable digital age of consent.

8. Security

We implement technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include TLS encryption for data in transit, encryption at rest for stored data, role-based access controls, and regular security reviews. No method of transmission over the internet or electronic storage is 100% secure; we cannot guarantee absolute security.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will provide at least 30 days’ notice of material changes by posting the new policy on this page with an updated “Last updated” date and by sending notification to the email address associated with your account. Your continued use of the Service after the effective date constitutes your acceptance of the updated policy.

10. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact Cravid Labs LLC at: