Privacy Policy

The data controller responsible for your personal data is: Zobsai

Owned and operated by Waygood EdTech Private Limited, a company incorporated under the Companies Act, 2013, India.

• Registered Jurisdiction: Delhi, India
• Website: https://zobsai.com
• Email: info@zobsai.com

We process your data for the following purposes:

• Account creation and management
• AI-powered job discovery and automated applications
• Gmail-based drafting and communication
• Analyzing user interactions with different features to understand usage patterns and improve our Services, AI models, performance, and user experience
• Personalization of recommendations
• Customer support and communications
• Marketing communications (with consent)
• Security, fraud prevention, and compliance

We rely on the following lawful bases under GDPR:

• Consent – for Gmail access, Chrome extension usage, and marketing emails
• Contractual necessity – to provide Services you request
• Legitimate interests – service improvement, analytics, fraud prevention, platform security
• Legal obligation – accounting, tax, and regulatory compliance

Payments are processed securely through third-party processors:

• Razorpay (India-based processor)
• Stripe (global processor)

We do not store or retain your full card or bank details. All transactions are encrypted and processed in compliance with PCI-DSS standards.

Payment data is used strictly to complete transactions and meet legal and accounting obligations.

You are encouraged to review:

• Razorpay Privacy Policy
• Stripe Privacy Policy

We retain personal data for up to TEN (10) years, unless a longer or shorter retention period is required by law or justified by legitimate business needs.

Retention breakdown:

• Account and profile data: Active account + up to 10 years
• Payment and financial records: As required under Indian tax and corporate laws
• Anonymized analytics and AI training data: Up to 10 years
• Data deleted earlier upon valid user request, where legally permissible

We may share data with:

• Cloud infrastructure providers (e.g., AWS)
• Payment processors (Razorpay, Stripe)
• OAuth providers (Google, LinkedIn)
• Advertising and analytics partners (where permitted)
• Employers and job platforms (only when you initiate applications)
• Legal and regulatory authorities, if required

All third parties are contractually bound to protect your data.

Your data may be transferred outside the EU/EEA, including to India and the United States.

Where required, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs) or equivalent legal mechanisms.

You have the right to:

• Access your personal data
• Rectify inaccurate data
• Erase your data (“right to be forgotten”)
• Restrict or object to processing
• Data portability
• Withdraw consent at any time
• Lodge a complaint with a supervisory authority

Requests can be sent to support@zobsai.com.

We use cookies and similar technologies to:

• Maintain sessions
• Analyze usage
• Improve platform functionality

Cookies do not personally identify you across third-party websites. You may disable cookies in your browser settings.

We use AI-driven automation to recommend jobs, draft applications, and optimize submissions.

These processes do not produce legal or similarly significant effects without human initiation by the user.

Our Services are intended for users 18 years and older. We do not knowingly collect data from minors.

This Privacy Policy is governed by the laws of India.

Any disputes shall be subject to the exclusive jurisdiction of the courts of Delhi, India.

In the event of a merger, acquisition, or restructuring involving Waygood EdTech Private Limited, your data may be transferred to the successor entity, subject to this Privacy Policy.

We may update this Privacy Policy from time to time. Material changes will be reflected by updating the “Last Updated” date.

Zobsai uses Google OAuth to access Gmail data only when explicitly authorized by the user.

Scope of Access

When you connect your Gmail account, we may:

• Read emails related to job opportunities
• Draft job application emails
• Send emails on your behalf related to job applications

We only access Gmail data strictly within the OAuth scopes granted by you and solely to provide user-initiated job application and AI assistance features.

Limited Use Compliance (Google Policy)

Zobsai’s use of Gmail data fully complies with Google’s Limited Use requirements. Specifically:

• We do NOT use Gmail data for advertising
• We do NOT sell Gmail data
• We do NOT use Gmail data to train generalized AI models
• We do NOT allow humans to read Gmail content except where strictly necessary for security, support, or legal compliance

Gmail data is used only to provide or improve user-facing features explicitly requested by the user.

What the Chrome Extension Can Access

Our Chrome extension may read:

• Page content related to job postings
• Form fields required for job application submission
• Browser context needed to trigger AI features (e.g., autofill, drafting, submission)

What We Do NOT Collect

We do NOT:

• Record full browser sessions
• Track browsing history
• Store unrelated website data
• Monitor activity outside job application workflows
• Capture keystrokes unrelated to Zobsai features

Storage & Retention

• Browser session data is processed locally or transiently
• We do not store raw browser session data
• Only job-application-related inputs and AI outputs initiated by the user may be stored
• Stored data follows the same retention limits outlined in this Privacy Policy (up to 10 years)

Conditional Browser Data Use

We reserve the right to collect and process limited browser information only when required to deliver a feature explicitly requested by the user (e.g., application submission, AI autofill).

The Zobsai Chrome Extension has a single, user-facing purpose:

To assist users with AI-powered job discovery, application drafting, and submission automation.

All data access permissions requested by the extension are directly related to this purpose and are not used for secondary or unrelated activities.

Users have full control over:

• Granting or revoking Gmail access via Google Account settings
• Installing or uninstalling the Chrome extension at any time
• Disabling specific permissions through browser settings

Revoking access immediately stops further data collection.

Zobsai does not allow human review of Gmail or browser data, except in the following limited cases:

• User-initiated support requests
• Security incident investigation
• Legal or regulatory compliance

Any such access is: Logged, Restricted, Time-bound, and Subject to confidentiality obligations.

We apply:

• Encrypted data transmission (TLS)
• Secure OAuth token handling
• Access controls and permission scoping
• Regular security reviews

OAuth tokens are stored securely and revoked immediately upon user request or account termination.

Data collected via Gmail OAuth or the Chrome Extension is NEVER used for:

• Advertising
• Retargeting
• Behavioral profiling
• Cross-service tracking

Analytics related to extension usage are aggregated, anonymized, and limited to feature performance analysis only.

You can safely use the following statements in Google verification forms:

For questions related to Google API or Chrome Extension compliance:

• Email: info@zobsai.com
• DPO (EU/UK): info@zobsai.com