Privacy Policy

Last updated: June 4, 2026

This Privacy Policy explains how Rizq AI("we", "us", "our") collects, uses, stores, and protects personal data when you use https://rizqai.inand related web and app services (the "Service"). By using the Service, you agree to this Privacy Policy.

Quick links

Data We CollectHow We Collect DataGoogle Data Access and OAuthGoogle API Limited UseData Sharing and DisclosureCookiesYour RightsContact

1. Data We Collect

  • Account information (name, email address, profile details, login session metadata).
  • Career information (resume data, work experience, education, skills, job preferences).
  • Application information (jobs selected, generated outreach emails, application history, status).
  • OAuth connection data (encrypted token data and token validity metadata).
  • Technical and usage data (logs, timestamps, browser/device data, IP and diagnostic events).
  • Payment and subscription information, where applicable (processed by payment providers).
  • Support and communication data when you contact us.

2. How We Collect Data

  • Directly from you when you register, edit profile details, and use app features.
  • From connected providers when you grant OAuth consent.
  • Automatically through cookies, logs, and analytics tools while using the Service.
  • From communications and support interactions.

3. Google Data Access and OAuth Permissions

When you connect Google, we use OAuth 2.0 so you can grant and revoke access securely. We do not ask for your Google password.

We request Google scopes for:

  • Gmail send capability to send job application emails on your behalf:https://www.googleapis.com/auth/gmail.send andhttps://mail.google.com/.
  • Basic profile and account identity:https://www.googleapis.com/auth/userinfo.email andhttps://www.googleapis.com/auth/userinfo.profile.

We use this access only to authenticate you and send emails that you trigger through our job-application workflows.

Rizq AI is not a bulk commercial mail service. All emails sent through Rizq AI are initiated by you, the job seeker, from your own connected Gmail account, on your own behalf, for the sole purpose of your personal job application outreach. Rizq AI does not send commercial emails for third parties, does not maintain or provide a leads database, and does not source contact information as a commercial service. Recipients of outreach emails may opt out at any time by replying with the word "Unsubscribe" or by using the one-click unsubscribe link in the email footer.

Rizq AI does not autonomously send emails without explicit user action. Every email sent via Gmail API requires direct user confirmation and approval within the platform before transmission.

4. Google API Data Use (Limited Use)

Our use of Google user data is limited to providing and improving user-facing features for this Service. We do not sell Google user data and do not use Google Workspace APIs data for advertising.

We only access the minimum Google data needed to deliver email-on-behalf functionality and account verification. Access is limited by the technical controls, and users can disconnect Google at any time. Our use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

We do not use Gmail data to train generalized AI or machine learning models. We do not read, index, or analyze your inbox for advertising or unrelated profiling. User data obtained through Google Workspace APIs is never shared with, transferred to, or processed by any third-party AI or LLM providers.

AI Content Generation and Third-Party AI Services

Rizq AI uses third-party AI services exclusively for generating resume content and outreach email drafts. These services receive only user-provided inputs such as career details, job preferences, skills, and resume data directly submitted by you through our platform. No data obtained from Google APIs is ever passed to, processed by, or accessible to any third-party AI provider. Google API data and AI content generation pipelines are completely segregated at the architecture level, with no data bridge, shared variable, or common processing layer between them.

Google API Services User Data Policy Compliance

Our application complies with the Google API Services User Data Policy, including its Limited Use requirements. In case of any conflict between this Privacy Policy and Google's policies, Google's policies shall take precedence with respect to Google API data.

5. How We Use Data

  • Provide, maintain, and improve our automation service and core app features.
  • Process automation requests and generate application content based on your configuration.
  • Maintain OAuth connections to your connected providers.
  • Send technical notices, updates, security alerts, and support messages.
  • Respond to your comments, questions, and support requests.
  • Monitor and analyze usage patterns, performance, and trends to improve the Service.
  • Detect, prevent, and address technical issues, security threats, and fraudulent activity.
  • Process payments and send billing information, where applicable.
  • Comply with legal obligations under applicable laws in India.

6. Data Sharing and Disclosure

We do not sell your personal data. We may disclose data only in limited cases:

  • Service providers assisting with hosting, payment processing, analytics, and operations, under contractual confidentiality and data-protection obligations.
  • Third-party APIs that you authorize through OAuth (for example, Google and other providers you connect) for configured automations.
  • Third-party AI providers used for content generation operate in a completely separate data pipeline and only process user-provided career and job preference data. They do not receive, access, store, or process any data obtained from Google OAuth or Google APIs under any circumstances.
  • Business transfer events (merger, sale, acquisition, or asset transfer), with continuity protections.
  • Legal requirements, such as court orders, lawful requests, or rights and safety protection.
  • Other disclosures with your explicit consent.

7. Storage, Retention, and Security

  • All data in transit is encrypted using TLS/SSL.
  • OAuth tokens are encrypted at rest and protected with strict access controls.
  • Infrastructure is hosted on secure cloud platforms with regular updates and monitoring.
  • OAuth tokens can be revoked by you at any time from account settings or provider controls.
  • We conduct periodic security reviews and assessments.
  • We retain Google OAuth tokens until you disconnect Google access or delete your account.
  • Application email metadata and service logs are retained for security, auditing, and troubleshooting.
  • We retain personal data only as long as needed for service delivery and legal requirements.

No method of internet transmission or storage is fully secure, but we apply commercially reasonable safeguards to minimize risk.

You are responsible for maintaining confidentiality of your account credentials and for activity conducted through your account.

8. Cookies and Tracking

We use cookies and similar technologies for authentication, session management, preferences, analytics, and security. You can manage cookies through your browser settings.

9. Third-Party Services and Links

We may use trusted third-party providers (for example, cloud hosting, analytics, and email infrastructure) to operate the Service. These providers process data under contractual and security obligations.

Third-party websites and services have their own policies and terms. We are not responsible for their privacy practices beyond our direct Service operations.

We also use third-party AI services for content generation features. These services process only user-provided data and have no access to Google API data.

10. Your Rights

Depending on your location, you may have rights to:

  • Access your personal data and request a copy.
  • Rectify inaccurate or incomplete personal data.
  • Delete your personal data and account, subject to legal retention requirements.
  • Object to or restrict processing in specific circumstances.
  • Receive your data in a structured, commonly used, and machine-readable format.
  • Withdraw consent where processing is consent-based, including OAuth disconnection.
  • Opt out of certain processing activities, such as marketing communications.

To revoke Gmail permissions, you can disconnect Google from your account settings or revoke access directly from your Google Account permissions page.

To exercise these rights, contact us using the details below. We respond within a reasonable timeframe and in accordance with applicable law.

11. Children's Privacy and Age Requirement

The Service is intended for users who are at least 18 years old or the age of majority in their jurisdiction. We do not knowingly collect personal data from children.

12. International Data Transfers

Your data may be processed in countries other than your own. Where required, we apply safeguards for cross-border data transfers and process data in line with applicable law.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Material updates will be posted on this page with an updated effective date.

14. Contact Information

Email: arbaznivsekar8@gmail.com

Address: Maharashtra, India