Our Security Practices
Encryption in Transit
All data between your browser and our servers is encrypted using TLS 1.3 (HTTPS) on every single request.
Encryption at Rest
Sensitive data including resumes and profile info is encrypted in our databases using AES-256 encryption.
In-House AI Processing
All AI processing runs on our own infrastructure. Your data is never sent to OpenAI, Google, Anthropic, or any third-party AI service.
Access Controls
Employee access to user data is restricted on a strict need-to-know basis with full audit logging on all access.
Secure Authentication
User accounts are protected with bcrypt password hashing, secure session management, and optional multi-factor authentication.
Regular Security Reviews
We conduct regular security assessments, vulnerability testing, and penetration testing to stay ahead of threats.
Where Your Data Goes
Data Retention & Deletion
We retain your data only as long as your account is active or as needed to provide services. When you close your account, data is purged on a rolling 30-day schedule.
Request Deletion Anytime
Submit via account settings or email support@chapter-01.com. We permanently delete your data within 30 days.
Report a Security Issue
If you discover a vulnerability or have security concerns, contact us immediately. We take every report seriously.