Data Processing Policy

Effective Date: September 1, 2025

1. General Provisions

1.1. This Data Processing Policy (hereinafter — "Policy") defines the procedure and conditions for processing personal data of FastCV service users, including features of interaction with artificial intelligence operators and internal data usage.

1.2. This Policy is a supplement to the Privacy Policy and User Agreement and applies to all FastCV service users.

1.3. By using the FastCV service, you agree to the terms of this Policy.

2. Data Processing Principles

2.1. We comply with the following principles of personal data processing:

  • Legality and fairness — processing is carried out on legal grounds
  • Purpose limitation — data is processed only for specific purposes
  • Data minimization — only necessary data is processed
  • Accuracy — data is maintained in current condition
  • Storage limitation — data is stored for limited time
  • Integrity and confidentiality — data security is ensured

3. Geographic Data Location

3.1. Primary data storage: All personal data of users is stored on secure servers located in the United States.

3.2. Compliance with US legislation: Data storage and processing are carried out in full compliance with US privacy laws and regulations.

3.3. Secure infrastructure: We use certified US data centers and cloud services with appropriate security measures.

4. Interaction with AI Operators

4.1. Necessity of interaction: To provide quality services for creating and optimizing resumes, we interact with artificial intelligence operators (hereinafter — "AI Operators").

4.2. Nature of transmitted data: Only anonymized data necessary for the following purposes is transmitted to AI operators:

  • Analysis of resume structure
  • Identification of key skills and competencies
  • Formation of improvement recommendations
  • Content optimization for specific job positions

4.3. Protection during transmission: Data transmission to AI operators is carried out:

  • Through secure communication channels (HTTPS, SSL/TLS)
  • With data encryption
  • Based on personal data protection agreements
  • With limited usage purposes

4.4. AI operator control: We enter into agreements only with verified AI operators who:

  • Comply with international data protection standards
  • Do not use data for other purposes
  • Ensure security and confidentiality
  • Destroy data after completing tasks

5. Internal Data Usage

5.1. Creating internal database: We use processed data for:

  • Forming a knowledge base about labor market requirements
  • Analyzing trends in various professional fields
  • Creating templates and recommendations for users
  • Developing new features and capabilities of the service

5.2. Algorithm improvement: Data is used for:

  • Machine learning and optimization of resume analysis algorithms
  • Improving accuracy of document improvement recommendations
  • Personalizing user experience
  • Developing intelligent tools for resume creation

5.3. Analytics and statistics: We analyze data for:

  • Understanding user needs
  • Evaluating effectiveness of various service functions
  • Planning development and improvements
  • Forming reports for internal use

6. Processing of Sensitive Data

6.1. Definition of sensitive data: Sensitive data includes:

  • Health information
  • Biometric data
  • Criminal record data
  • Political views and religious beliefs
  • Financial information

6.2. Processing features: Sensitive data:

  • Is processed exclusively on secure US servers
  • Is not transmitted to AI operators
  • Is used only for internal service purposes
  • Is protected by additional security measures

6.3. Consent for processing: Processing of sensitive data is carried out only upon receiving explicit user consent.

7. Technical Protection Measures

7.1. Data encryption:

  • Data encryption during transmission (TLS 1.3)
  • Data encryption during storage (AES-256)
  • Backup encryption
  • Encryption key protection

7.2. Access control:

  • Multi-factor authentication
  • Principle of least privilege
  • Regular access audit
  • Logging of all data actions

7.3. Physical security:

  • Protected data centers in the United States
  • Access control to server rooms
  • Video surveillance and alarm systems
  • Backup power and cooling systems

8. Monitoring and Audit

8.1. Continuous monitoring: We carry out:

  • Real-time security monitoring
  • Tracking suspicious activity
  • Data integrity control
  • System performance monitoring

8.2. Regular audit:

  • Monthly security audit
  • Quarterly compliance audit
  • Annual external audit
  • AI operator audit

9. User Rights

9.1. Right to information: The user has the right to know:

  • What data is being processed
  • For what purpose the data is used
  • Which AI operators are involved
  • How security is ensured

9.2. Right to control: The user can:

  • Withdraw consent for processing
  • Request correction of inaccurate data
  • Demand data deletion
  • Limit data processing

10. Staff Training

10.1. Mandatory training: All staff working with personal data undergoes mandatory training on data protection issues.

10.2. Periodic knowledge updates: Training is conducted:

  • Upon employment
  • Annually for all employees
  • When legislation changes
  • When new technologies are implemented

11. Incidents and Response

11.1. Response procedure: Upon detecting a security incident:

  • Access to affected systems is immediately blocked
  • Incident scope analysis is conducted
  • Authorized bodies are notified (if necessary)
  • Users are informed about possible risks

11.2. Data recovery: We ensure:

  • Regular data backup
  • Quick recovery after incidents
  • Minimization of data loss
  • Analysis of causes and prevention of recurrence

12. International Compliance

12.1. Compliance with US standards: We comply with:

  • US privacy laws and regulations
  • State of Florida data protection requirements
  • Industry security standards
  • International data protection standards

12.2. International standards: When interacting with AI operators, we consider international data protection standards such as GDPR, CCPA and others.

13. Contact Information

For all questions related to personal data processing, contact us:

Email: info@fastcv.ai

Website: https://fastcv.ai

Application: https://app.fastcv.ai/

Telegram: @fastcvai

Working hours: 24/7

Response time: Within 24 hours

14. Final Provisions

14.1. This Policy comes into force from the moment of posting on the website and is valid until its cancellation or replacement with a new version.

14.2. The Policy is drawn up in English and is governed by the legislation of the State of Florida, United States.

14.3. In case of disputes, the legislation of the State of Florida, United States applies.

14.4. This Policy is a supplement to the Privacy Policy and does not replace it.