Security and privacy

How RezSync handles your data.

No badge wall, no certification theatre. Just the answers to the questions you'd actually ask: what's stored, who can see it, what we won't do with it, and how to delete it.

See the principlesContact us

How we think about your data.

Four rules that shape what we will and won't do with what you upload.

Your resume is your data.

Resumes, profile details, application history — none of it is shared, sold, or used to train models. It exists in your account so RezSync can do its job.

You can see what the software did.

Every application RezSync submits is logged in your dashboard with the resume and cover letter that went out. Nothing happens out of view.

Encrypted, end to end.

Data is encrypted at rest with AES-256 and in transit with TLS 1.3. Authentication is gated behind standard secure flows.

Aligned with the rules that apply.

GDPR, Kenya's Data Protection Act 2019, and the principles those frameworks rest on — minimal collection, clear purpose, real user rights.

Public commitments

We do not sell your data, share it with third parties, or use it to train machine-learning models.

We do not share your resume with anyone except the employers you actually apply to.

You can pause submissions, export your data, or delete your account at any time from the dashboard.

Security or privacy questions go to a real person — security@rezsync.com.

User expectations

See what's stored.

Request an export of the data RezSync holds for your account. We send it back as a machine-readable file.

Correct what's wrong.

Profile or account details that are inaccurate can be edited from the dashboard, or fixed via support if a control is missing.

Delete on request.

When you delete your account, we remove your personal data from our active systems. Backups expire on their normal cycle.

Security and privacy contact

Ask direct questions when you need direct answers.

Privacy

Questions about personal data and account handling

privacy@rezsync.com

Security

Questions about security concerns or responsible disclosure

security@rezsync.com

For broader product questions, use the main contact page.

Contact RezSync

Further reading

Public frameworks worth knowing if you care about data protection.

General Data Protection Regulation

Regulation

Core EU privacy framework.

GDPR

Office of the Data Protection Commissioner, Kenya

Authority

Kenya data protection authority and guidance.

ODPC Kenya

NIST Cybersecurity Framework

Framework

Widely used framework for security thinking and controls.

NIST

OWASP Web Security Testing Guide

Guide

Practical web application security reference.

OWASP

Security should feel like part of the product

That means clearer controls, narrower claims, and easier ways to ask difficult questions.

Read privacy policyContact the team