CyVekas logo
Sign in

Security

How data and access work

This page explains what is saved, what is temporary, how login works, and how deletion works.

Read privacy policyRead terms of service

What is temporary and what is saved

Guest checks are temporary. Signed-in users can save sessions when they choose to, and sensitive session inputs are protected at rest when they are stored.

  • Guest runs do not create saved session history
  • Signed-in users can use the app without saving a session
  • Saved CV text, job description text, and profile inputs are protected at rest
  • Saving a profile CV is optional

Saved results

When a signed-in user saves a session, both generated outputs and the sensitive inputs needed for the saved workflow are protected before storage.

  • Saved review output is protected before storage
  • Saved company insights use the same protection
  • Saved profile CV text and linked profile inputs use the same protection model

Login and account actions

Account actions require a valid login session. Requests that change data are checked before they are accepted.

  • Session cookies are HTTP-only
  • Requests that change data use CSRF and origin checks
  • Admin actions use protected endpoints

Deleting data

Users can remove saved data later. This includes single sessions or the whole account.

  • Delete individual saved sessions
  • Delete your account and related saved data
  • Login sessions can be revoked when needed

Shared recruiter links

Recruiter scorecard share links are designed to be time-limited rather than permanent.

  • Share links expire automatically
  • Creating a new share link rotates the token
  • Active share links can be revoked manually

Retention

Saved text can be cleaned up automatically after a retention period, and older saved sessions can also be removed later by policy.

  • Saved raw CV and job description text can be cleared automatically
  • Older saved sessions can be removed by retention policy
  • The system keeps only the data needed to run the service

Service logs and monitoring

The service uses limited logs and monitoring to keep the app working and to fix problems.

  • Logs and monitoring help detect failures
  • Authentication, usage limits, and rate limits help prevent abuse
  • The product is for CV review, not for selling profile data

More product details

For current plan limits and recruiter workflow details, use the pricing and HR mode pages.

  • Pricing explains Job seeker and HR plan limits
  • HR mode explains candidate ranking, batch sizes, and recruiter workflow