← Back to Midas

Privacy Policy

Last updated: March 2, 2026

1. Information We Collect

When you use Midas, we process the following data:

  • Resume Data: Your uploaded PDF is parsed in-memory to extract skills, experience, and job preferences. We do NOT store your resume file on our servers.
  • Search Preferences: Location, job title, experience level, and skills you provide are used to query job search APIs.
  • Account Data: When you sign in via Clerk (Google/email), your authentication ID is used to track your token balance and scan usage on our servers.
  • Usage Data: Token balance, daily scan count, and deep scan usage are stored server-side in a secure Redis database (Upstash), tied to your authenticated account.
  • Payment Data: Processed entirely by Razorpay. We never see or store your card details, UPI ID, or bank information.
  • Local Storage: Profile data and search results are cached locally in your browser's localStorage for convenience. This data never leaves your device unless you initiate a search.

2. How We Use Your Data

  • To match you with relevant job listings from Google Jobs, WeWorkRemotely, Lever, RemoteOK, and other sources.
  • To generate AI-powered match analysis using LLM providers (OpenRouter/Claude).
  • To process payments via Razorpay for token purchases.
  • To enforce usage limits and track your token balance server-side.

3. Third-Party Services

We use the following third-party services:

  • SerpAPI: For fetching Google Jobs results. Your search query and location are sent to their API.
  • OpenRouter / Claude: For AI-powered job analysis. Anonymized job data and skill summaries are sent for scoring.
  • Clerk: For authentication. Clerk's privacy policy applies to account data.
  • Razorpay: For payment processing. Razorpay's privacy policy governs all payment data.
  • Upstash Redis: For server-side storage of token balances and usage counters. Data is encrypted in transit and at rest.

4. AI Training Disclaimer

Your resume data is NOT used to train any AI models. All processing is in-memory and ephemeral. Job descriptions and your skills are sent to LLM APIs solely for generating match scores, and are not retained by those services for training purposes.

5. Data Retention

Profile data and search results are stored in your browser's localStorage and can be cleared at any time using the "Clear Data" button. Server-side data (token balance, scan counters) is tied to your authenticated account and retained as long as your account exists. Daily scan counters automatically reset every 24 hours.

6. Your Rights

You may request deletion of your server-side data (token balance, scan history) at any time by contacting us. You can clear all local data instantly via the dashboard.

7. Contact

For privacy-related inquiries, contact us at privacy@midasmatch.com.