Back to Home

Privacy Policy

Last Updated: January 2025

1. Introduction

Uvact Inc. ("Company", "we", "us", or "our") operates Docufit ("Service"). This Privacy Policy informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service.

For users located in the European Economic Area (EEA), United Kingdom, or Switzerland, this Privacy Policy also explains how we comply with the General Data Protection Regulation (GDPR) and your rights under GDPR.

Data Controller: Uvact Inc. is the data controller responsible for your personal data. Our contact information is provided in Section 12 below.

2. Information We Collect

2.1 Personal Information

We collect information that you provide directly to us, including:

  • Name and contact information (email address, phone number)
  • Resume and job application data
  • Payment information (processed through secure third-party processors)
  • Account credentials

2.2 Automatically Collected Information

We automatically collect certain information when you use our Service, including:

  • Device information and identifiers
  • Usage data and analytics
  • Cookies and similar tracking technologies

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our Service
  • Process your job applications and optimize your resume
  • Send you service-related communications
  • Process payments and prevent fraud
  • Comply with legal obligations

3.1 Legal Basis for Processing (GDPR)

For users in the EEA, UK, or Switzerland, we process your personal data based on the following legal grounds:

  • Contractual Necessity: To perform our contract with you and provide the Service you have requested
  • Legitimate Interests: To improve our Service, prevent fraud, and ensure security (where our interests do not override your rights)
  • Consent: When you have given explicit consent for specific processing activities (e.g., marketing communications)
  • Legal Obligation: To comply with applicable laws and regulations

4. Information Sharing and Disclosure

We do not sell your personal information. We may share your information only in the following circumstances:

  • With your explicit consent
  • To service providers who assist us in operating our Service
  • To comply with legal obligations or protect our rights
  • In connection with a business transfer or merger

5. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including encryption, access controls, and regular security assessments. However, no method of transmission over the Internet or electronic storage is 100% secure.

In accordance with GDPR requirements, we have implemented measures to ensure a level of security appropriate to the risk, including:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and authentication mechanisms
  • Staff training on data protection
  • Incident response procedures

6. Your Rights

Depending on your location, you may have the following rights:

  • Access to your personal information
  • Correction of inaccurate data
  • Deletion of your personal information
  • Objection to processing of your data
  • Data portability

6.1 Your Rights Under GDPR

If you are located in the EEA, UK, or Switzerland, you have the following rights under GDPR:

  • Right of Access (Article 15): You have the right to obtain confirmation as to whether we process your personal data and to access that data, along with certain information about the processing.
  • Right to Rectification (Article 16): You have the right to have inaccurate personal data corrected and incomplete data completed.
  • Right to Erasure (Article 17): You have the right to request deletion of your personal data in certain circumstances, such as when the data is no longer necessary for the original purpose or you withdraw consent.
  • Right to Restrict Processing (Article 18): You have the right to request that we limit how we use your personal data in certain circumstances.
  • Right to Data Portability (Article 20): You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.
  • Right to Object (Article 21): You have the right to object to processing of your personal data based on legitimate interests or for direct marketing purposes.
  • Right to Withdraw Consent: Where processing is based on consent, you have the right to withdraw your consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
  • Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority in your country of residence if you believe we have violated your data protection rights.

To exercise any of these rights, please contact us using the information provided in Section 12. We will respond to your request within one month, though this period may be extended by two additional months if necessary, taking into account the complexity and number of requests.

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our Service and hold certain information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent.

For users in the EEA, UK, or Switzerland, we obtain your consent before placing non-essential cookies on your device, in accordance with GDPR and the ePrivacy Directive. You can manage your cookie preferences at any time through your browser settings or our cookie consent banner.

8. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. When determining retention periods, we consider:

  • The nature and sensitivity of the data
  • The purposes for which we process the data
  • Legal, regulatory, and contractual requirements
  • The potential risk of harm from unauthorized use or disclosure

When personal data is no longer needed, we will securely delete or anonymize it in accordance with our data retention policies and applicable law.

9. International Data Transfers

Your personal data may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country.

For users in the EEA, UK, or Switzerland, when we transfer your personal data to countries outside the EEA/UK/Switzerland that are not recognized as providing an adequate level of data protection, we implement appropriate safeguards, such as:

  • Standard Contractual Clauses approved by the European Commission
  • Other legally recognized transfer mechanisms

By using our Service, you consent to the transfer of your personal data to countries outside your country of residence, including the United States, where our servers and service providers may be located.

10. Children's Privacy

Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

If we become aware that we have collected personal data from a child under 18 without parental consent, we will take steps to delete that information promptly.

11. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. For significant changes, we may also notify you by email or through a notice on our Service.

We encourage you to review this Privacy Policy periodically to stay informed about how we collect, use, and protect your personal data.

12. Contact Us and Data Protection Inquiries

If you have any questions about this Privacy Policy or wish to exercise your rights under GDPR or other applicable data protection laws, please contact us at:

Uvact Inc.
Email: support@docufit.app
Subject Line: "Privacy Policy Inquiry" or "GDPR Request"

For users in the EEA, UK, or Switzerland, you also have the right to lodge a complaint with your local data protection supervisory authority if you believe we have not addressed your concerns adequately. You can find contact information for your supervisory authority at: