💰 PayCheck — Privacy Policy
Last updated: May 2026
PayCheck ("the Extension") adds salary benchmarks, red flag detection, and AI-powered resume matching to LinkedIn and Naukri job listings. This policy explains what data is collected, how it is used, and your rights.
1. Data We Collect
- Resume text — extracted from the PDF you upload. Stored locally on your device in
chrome.storage.local for job matching.
- Structured profile data — when you upload a resume, we extract and store the following in our secure database: name, email address, phone number, location, LinkedIn URL, job title, years of experience, skills, past companies, education, and (if present on the resume) current and expected salary. This data is linked to an anonymous device identifier, not your Google account or any login.
- Job description text — read from the current job listing page when you view it. Sent temporarily to our AI service to generate a match score and salary estimate. Not stored after the response is returned.
- Anonymous device ID — a randomly generated UUID stored in your browser. Used to update your profile if you re-upload a resume. Not linked to any personal account.
2. Why We Collect Profile Data
Structured profile data is used to build a talent database that connects job seekers with recruiters. By uploading your resume, you are opting in to have your profile visible to recruiters who use the PayCheck platform. Your profile is stored with open_to_work: true by default.
✅ You can remove your locally stored resume at any time by clicking "Remove resume" in the extension popup. To request deletion of your profile from our servers, email
kiran.shivlingkar@nykaa.com with your email address or name.
3. Data We Do Not Collect
- We do not collect your browsing history or track which jobs you view.
- We do not store your full resume PDF or raw resume text on our servers.
- We do not link your profile to your Google account, LinkedIn account, or any other login.
4. How Data Is Used
- Profile data is stored in our Supabase database and may be shared with recruiters looking for candidates matching your skills and experience.
- Resume text + job description are sent to a secure serverless function solely to generate an AI-powered match score via OpenAI's API. This data is not logged or stored beyond the single API call.
- Salary data is fetched from our Supabase database (public read-only) and cached locally on your device for 24 hours.
5. Third-Party Services
- Supabase — hosts our salary database, talent profile database, and serverless analysis functions. Supabase Privacy Policy
- OpenAI — processes job description + resume text to generate match scores and salary estimates. Data is processed under OpenAI's API terms and is not used to train models. OpenAI Privacy Policy
6. Permissions Explained
- storage — saves your resume text, device ID, and cached salary data locally on your device.
- linkedin.com, naukri.com — reads the current job listing to display salary benchmarks and red flags.
- supabase.co — fetches salary data, submits job text for analysis, and stores your talent profile.
7. Your Rights
- Access: Email us to request a copy of the data we hold about you.
- Deletion: Email us to have your profile permanently deleted from our servers.
- Opt-out: Simply do not upload a resume. The extension works without a resume — salary benchmarks and red flags run without any profile data being collected.
8. Data Retention
Your local resume text remains in your browser until you click "Remove resume." Your server-side talent profile is retained until you request deletion. No job description data is retained beyond the duration of a single API call.
9. Children's Privacy
The Extension is not directed at children under 13 and does not knowingly collect data from minors.
10. Changes
We may update this policy. The "Last updated" date at the top will reflect any changes. Continued use of the extension after changes constitutes acceptance.
11. Contact
Questions or data requests? Email kiran.shivlingkar@nykaa.com