Privacy Policy

Jobfoxly is a job search organizer that helps you keep track of your job applications. We are based in the Netherlands and operate under Dutch and European privacy laws (GDPR).

The company behind Jobfoxly is Dot-0, a sole proprietorship (eenmanszaak), Dijk 25, 1721 AA Broek op Langedijk, the Netherlands. KVK: 34268249. BTW: NL001610753B43.

If you have questions about your privacy, you can reach us at [email protected].

Account information: your email address and name (used to log you in and identify your account).

Job data: job URLs, titles, company names, locations, descriptions, and any notes you add. This is the data you enter yourself.

Contact details: names, emails, phone numbers, and LinkedIn URLs of contacts you save with your job entries.

Files: CVs or other documents you upload (PDF, DOCX).

Technical data: your IP address, browser type, and device info. We collect this only for security and to keep the service running.

Under GDPR Article 6, we have the following reasons to use your data:

To run the service (Art. 6(1)(b)): we store your job entries, notes, and files so you can use them when you log in.

To verify who you are (Art. 6(1)(b)): we use your email to confirm your identity through magic links, password login, or Google/Microsoft sign-in.

To keep the service safe (Art. 6(1)(f)): we collect technical data (IP address, browser type) to protect against misuse and keep things running.

To improve the service (Art. 6(1)(a)): with your permission, we look at anonymous usage data to understand how people use the service. We never sell your personal data.

To send you emails (Art. 6(1)(b)): we send you login links, payment confirmations, and important updates about your account.

To follow the law (Art. 6(1)(c)): we may keep or share data when Dutch or EU law requires it.

Sign-in providers: if you sign in with Google or Microsoft, they share your email and name with us. We never see your password. Your data may go through Google or Microsoft servers in the United States, but they follow EU privacy rules (Standard Contractual Clauses). See https://privacy.google.com and https://privacy.microsoft.com for details.

Hosting: our servers are hosted in Europe. Your data stays within the EU.

Email delivery: we use an email service to send login links and payment confirmations. Only your email address is shared for this purpose. The email service operates within the EU.

Payment processing: payments are handled by a third-party payment provider operating within the EU. We do not store your payment card details.

Analytics: we use Umami, a privacy-friendly analytics tool that we host ourselves. It counts page views without using cookies or storing any personal information. It only runs after you say yes. No data goes to other companies.

Your data is kept as long as you have an active account.

If you delete your account, all your data (job entries, notes, files, and account information) is permanently removed within 30 days.

Backups may retain your data for up to 90 days after deletion, after which it is permanently erased.

We do not sell, rent, or trade your personal data with anyone.

We only share data with the third-party services listed above, and only what is strictly needed to run the service.

We may disclose data if required by law or to protect our rights.

All connections use HTTPS encryption.

If you use a password to log in, it is scrambled (hashed) before we store it. We never save your actual password. You can also use magic links or sign in with Google or Microsoft.

Access to your data is limited to your account only. Other users cannot see your job entries.

We follow security best practices including input validation, rate limiting, and regular updates.

Under the GDPR, you have the right to:

Access: request a copy of all data we have about you.

Correction: ask us to fix any incorrect data.

Deletion: ask us to delete your account and all associated data.

Data portability: get a copy of your data in a standard format (JSON).

Restriction: ask us to limit how we use your data.

Objection: say no to certain uses of your data.

Withdrawal of consent: if you gave us permission to use your data, you can take it back at any time. This does not affect anything we did before you changed your mind. For analytics cookies, use the "Manage cookies" link in the footer. For anything else, email us at the address below.

To exercise any of these rights, email us at [email protected]. We will respond within 30 days.

You can also file a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) at https://www.autoriteitpersoonsgegevens.nl.

We do not use automated decision-making or profiling as defined under GDPR Article 22. No decisions with legal or similarly significant effects are made about you without human involvement.

We use essential cookies that are needed to keep you logged in. These are session cookies and expire after 7 days or when you log out.

We also ask for your consent to use optional cookies for analytics and marketing purposes. These are off by default and only activated if you choose to allow them.

You can manage your cookie preferences at any time using the cookie banner or via the Cookie Policy page. For full details on each cookie category, see our Cookie Policy.

We may update this privacy policy from time to time. When we make significant changes, we will notify you by email or by showing a notice in the app.

This policy was last updated on March 18, 2026.