← Back to CareerAdvisor

Privacy Policy (RODO/GDPR Compliant)

Last Updated: July 2, 2026

We are committed to protecting your personal data. This Privacy Policy explains how CareerAdvisor (the "Application") collects, uses, and safeguards your information in accordance with the General Data Protection Regulation (GDPR / RODO).

1. Data Controller

Since the Application is currently in an early-stage beta testing phase and is not yet registered as a commercial entity, the Data Controller is the creator and administrator of the CareerAdvisor platform. For any data protection inquiries, you can contact us directly via the platform's support channels.

2. What Data We Collect and Why

  • Authentication Data: When you log in via Google OAuth, we collect your e-mail address, name, and profile image. This is necessary to create and secure your user account.
  • Professional Profile Data: We collect information you provide in the onboarding form and during the AI conversation (current role, experience, target position, skills, financial expectations, and region). This data is strictly used to generate your personalized learning plans and exams.
  • Usage Data & Analytics: We use PostHog to analyze user behavior, record sessions, and improve the user experience. This includes tracking which tabs you visit and how you interact with the interface. This data is processed in a GDPR-compliant manner on EU-based cloud servers.

3. Third-Party Data Processors (AI Infrastructure)

To provide the core features of the platform, your professional profile data and chat inputs are processed by third-party Artificial Intelligence providers via secure API connections. Your data is sent to:

  • Azure OpenAI: For orchestrating career analysis, goal generation, plan generation, and exam processing (using GPT models).
  • Google Gemini: For retrieving real-time market intelligence and learning resources.
  • Anthropic Claude: For supporting conversation and analysis tasks within the platform.

Note: Your data is sent to these providers strictly for processing responses and is not used by them to train public AI models.

4. Legal Basis for Processing

  • Consent (Article 6(1)(a) GDPR): By logging in via Google and filling out the onboarding profile, you explicitly consent to the processing of your data to generate career plans.
  • Legitimate Interest (Article 6(1)(f) GDPR): For collecting technical usage statistics via PostHog to maintain system stability and optimize the application.

5. Data Retention

Your personal data and generated plans will be stored for the duration of the Closed Beta testing phase or until you request the deletion of your account. You can delete your generated plans directly within the interface at any time.

6. Your Rights under GDPR (RODO)

You have the following rights regarding your data:

  • The right to access your personal data and receive a copy of it.
  • The right to rectify (correct) your data.
  • The right to request the erasure of your data ("right to be forgotten").
  • The right to withdraw your consent at any time (withdrawal does not affect the lawfulness of processing based on consent before its withdrawal).
  • The right to lodge a complaint with a supervisory authority (e.g., UODO in Poland).