JobOps — AI-Powered Career Platform

1. Your Rights Under GDPR

Right of Access

Art. 15

Request a copy of all personal data we hold about you, including the purposes of processing, retention periods, and recipients.

→ Email us at contact@crafting-codes.com

Right to Rectification

Art. 16

Have inaccurate personal data corrected. Most account data can be updated directly in your Clerk profile or dashboard.

→ Update in dashboard or email us

Right to Erasure

Art. 17

Request deletion of all your personal data when it's no longer necessary, you withdraw consent, or processing was unlawful.

→ Settings → Delete Account (instant)

Right to Restriction

Art. 18

Request that we restrict (not delete) processing of your data while you contest accuracy or pending verification.

→ Email with subject: GDPR — Restriction

Right to Portability

Art. 20

Receive your personal data in a structured, machine-readable JSON format and transmit it to another controller.

→ Settings → Export My Data (instant)

Right to Object

Art. 21

Object to processing based on legitimate interests. We will cease unless we can demonstrate compelling legitimate grounds.

→ Email us at contact@crafting-codes.com

2. How to Exercise Your Rights

Export Your Data (Art. 20)

Available directly in your account — no need to contact us.

1Log in to JobOps
2Go to Dashboard → Settings
3Click Data & Privacy
4Click "Export My Data"

Delete Your Account (Art. 17)

Irreversible — permanently removes all your data.

1Log in to JobOps
2Go to Dashboard → Settings
3Click Data & Privacy
4Click "Delete Account" & confirm

All other requests (access, rectification, restriction, objection)

Email contact@crafting-codes.com with subject: GDPR — [Right Type] Request

Include your registered email. We respond within 30 calendar days as required by GDPR Art. 12(3).

3. International Data Transfers

Core data stays in the EU

Our primary database (Neon PostgreSQL) and file storage (AWS S3) are both located in Frankfurt, Germany (eu-central-1).

For sub-processors outside the EEA, we rely on approved safeguards:

Standard Contractual Clauses (SCCs)

Used with Clerk (USA), Affinda (Australia), Anthropic (USA), Google (USA), SendGrid/Twilio (USA). Approved by the European Commission under GDPR Art. 46(2)(c).

UK Adequacy Decision

Used with Adzuna (UK). The EU Commission has recognised the UK as providing adequate data protection equivalent to GDPR.

4. Right to Lodge a Complaint

If you believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with your national data protection supervisory authority.

🇫🇷 France (lead authority)

CNIL — Commission Nationale de l'Informatique et des Libertés

www.cnil.fr

Tel: +33 1 53 73 22 22

🇪🇺 Other EU member states

You may also contact the DPA of your country of habitual residence or where the alleged infringement occurred.

Full list of EU DPAs →

We would appreciate the opportunity to address your concerns directly before you contact a supervisory authority.

5. Data Processing Activities

Activity	Data	Legal Basis	Retention
Account registration	Name, email, Clerk ID	Contract Art. 6(1)(b)	Account lifetime + 30 days
CV upload & parsing	CV file, structured data	Contract Art. 6(1)(b)	Until CV or account deleted
CV optimisation (AI)	CV content → AI processor	Contract Art. 6(1)(b)	Not retained by AI processor
Job tracking	Company, role, salary, notes	Contract Art. 6(1)(b)	Until record or account deleted
Usage monitoring	Optimisation count, timestamps	Legitimate interests Art. 6(1)(f)	12 months
Transactional email	Email address	Contract Art. 6(1)(b)	Account lifetime
Contact form	Name, email, message	Legitimate interests Art. 6(1)(f)	24 months

6. Contact & Data Controller

Crafting Codes, SAS

contact@crafting-codes.com · crafting-codes.com · +33 9 54 66 84 33