Legal

Privacy Notice

Last updated: July 15, 2026

This Privacy Notice explains how Tashghil Pro ("Tashghil Pro", "we", "us") collects, uses, shares, and protects personal data in connection with the Kairos platform (the "Service"). Tashghil Pro is the data controller of the personal data processed through Kairos.

1. Personal data we collect

  • Account data — name, email address, hashed password, authentication identifiers.
  • Profile & resume content — the professional information, resumes, cover letters, job applications, notes, and other content you create or upload.
  • Support communications — messages you send us and their metadata.
  • Usage & telemetry — pages viewed, actions taken, feature usage, timestamps, referring URLs, and diagnostic logs.
  • Device & connection data — IP address, browser type, operating system, device identifiers.
  • Cookies & similar technologies — see the Cookies section below.

Payment and billing data is collected directly by Paddle at checkout and is not stored by Tashghil Pro.

2. How we use personal data

  • Provide the Service — create and manage your account, store your content, deliver AI features you request.
  • Security & fraud prevention — detect abuse, protect accounts, and secure our infrastructure.
  • Customer support — respond to your requests and troubleshoot issues.
  • Product improvement & analytics — understand how Kairos is used and improve features.
  • Communications — send transactional messages (account, security, billing) and, with your consent where required, product updates.
  • Legal & compliance — meet legal obligations, enforce our Terms, and defend our rights.

3. Legal bases for processing

Where applicable data protection law (such as GDPR or UK GDPR) applies, we rely on the following legal bases:

  • Performance of a contract — to provide the Service you have signed up for.
  • Legitimate interests — to keep the Service secure, improve it, and communicate with users.
  • Consent — for optional cookies and marketing communications, where required.
  • Legal obligation — to comply with laws that apply to us.

4. Who we share personal data with

  • Service providers / subprocessors — cloud hosting, database, email delivery, error monitoring, and analytics providers that process data on our behalf under appropriate contractual protections.
  • Paddle — our Merchant of Record for the sale of the Service. Paddle processes payments, manages subscriptions, handles tax compliance, and issues invoices.
  • AI providers — content you submit to AI features may be processed by third-party AI model providers solely to generate the requested output.
  • Professional advisers — lawyers, accountants, and auditors bound by confidentiality obligations.
  • Authorities — where required by law, legal process, or to protect our rights and users.
  • Business transfers — in connection with a merger, acquisition, or reorganization, subject to equivalent protections.

We do not sell your personal data.

5. International transfers

Your personal data may be transferred to, and processed in, countries other than your own, including outside the UK/EEA. Where such transfers occur, we rely on appropriate safeguards such as European Commission Standard Contractual Clauses or an applicable adequacy decision.

6. Data retention

We keep personal data only for as long as necessary to provide the Service, comply with our legal obligations, resolve disputes, and enforce our agreements. When you delete your account, we delete or anonymise your personal data within a reasonable period, except where longer retention is required or permitted by law (for example, billing and tax records held by Paddle).

7. Your rights

Depending on your location, you may have the right to access, correct, delete, restrict, or object to the processing of your personal data, to data portability, and to withdraw consent at any time. Users in the UK/EEA also have the right to lodge a complaint with their supervisory authority. We will respond to verified requests within the time required by applicable law (typically one month).

To exercise your rights, email support@notify.tashghil.pro.

8. Security

We use appropriate technical and organisational measures to protect personal data, including encryption in transit, access controls, and continuous monitoring. No system is perfectly secure, and we cannot guarantee absolute security, but we work to protect your data and to promptly address incidents.

9. Cookies

Kairos uses essential cookies necessary to operate the Service (for example, to keep you signed in) and, where enabled, analytics cookies to understand how the Service is used. You can manage cookie preferences through your browser settings; disabling essential cookies may impair core functionality.

10. Children

Kairos is not directed to children under the age required to consent to online services in their jurisdiction, and we do not knowingly collect personal data from them.

11. Changes to this notice

We may update this Privacy Notice from time to time. Material changes will be communicated through the Service or by email.

12. Contact

For any questions about this notice or our data practices, contact Tashghil Pro at support@notify.tashghil.pro.