Tremplin← Back home

Legal

Privacy policy

Tremplin is designed so that your data stays on the server you control. This page describes what gets stored and where it goes when you use the hosted instance.

What we store

  • Email, bcrypt-hashed password, and display name.
  • Your profile: CV, location, target roles, optional photo, compensation preferences.
  • Your API keys for third-party providers (LLM, Google Maps, France Travail, Jooble). Encrypted at rest with AES-256-GCM.
  • Offers you scan or import, their evaluations, generated CVs and cover letters, application status.
  • A login rate-limit counter per email.

What leaves the server

  • Calls to the LLM provider YOU configure — they see your CV, the job description, and the prompt template.
  • Calls to job-board APIs YOU enable (France Travail, Jooble, Google Places) — they see the search queries you make.
  • HTML fetches for JD enrichment and contact discovery — the target website sees a request from our server.

What we never do

  • No analytics, no tracking pixels, no third-party ads.
  • No email marketing.
  • We never access your data for our own purposes, and we never share it with anyone.

Your rights

You can download or delete your data at any time through the account settings. Deletion is permanent and propagates to all related rows (offers, reports, scan history).

Contact

Questions or deletion requests: open an issue on GitHub.

Last updated: 2026-06-17