Data Encryption
All data stored on AutoApply is encrypted using AES-256 encryption at rest, the same standard used by banks and government institutions worldwide. This means that even in the unlikely event of a data breach, your information would be unreadable without the encryption keys.
All data transmitted between your browser and our servers is protected with TLS 1.3 encryption in transit. Every connection to AutoApply uses HTTPS, ensuring that no third party can intercept your information during transfer.
OAuth-Based Permissions
When you connect AutoApply to job platforms like LinkedIn or Naukri, we use OAuth 2.0 authentication. This industry-standard protocol means:
- We never see or store your passwords for any external platform
- You grant specific, limited permissions that you can revoke at any time
- Authentication tokens are encrypted and stored separately from your profile data
- We request only the minimum permissions needed to submit applications on your behalf
Your Data is Never Sold
This is non-negotiable. AutoApply does not sell, rent, or trade your personal data to third parties. Your resume content, contact information, job preferences, and application history are used solely to provide you with our service.
We do not share your data with recruiters, employers, or data brokers without your explicit, informed consent. If an employer wants to see your profile, you will always be asked first.
GDPR-Aligned Practices
Although AutoApply is based in India and primarily serves Indian users, we align our data handling practices with the EU General Data Protection Regulation (GDPR), one of the world's strictest data privacy frameworks. This means:
- Data minimization: We collect only the data necessary to provide our service
- Purpose limitation: Your data is used only for the purposes you consented to
- Storage limitation: We do not retain data longer than necessary
- Transparency: You can request a full export of all data we hold about you
- Lawful basis: We process data based on your explicit consent and legitimate service delivery
We also comply with India's Digital Personal Data Protection Act (DPDPA) 2023 requirements as they are enacted.
Right to Deletion
You have the complete right to delete your account and all associated data at any time. When you request deletion:
- Your profile, resume data, and application history are permanently removed from our active databases within 48 hours
- Backup copies are purged within 30 days
- We send you a confirmation email once deletion is complete
- This process is irreversible — we cannot recover deleted data
To request account deletion, email support@useautoapply.com with the subject line "Account Deletion Request" or use the delete option in your account settings.
Infrastructure Security
Our platform runs on enterprise-grade cloud infrastructure with:
- Regular security audits and vulnerability assessments
- Automated monitoring for suspicious activity
- Role-based access controls for internal team members
- Regular backups with encrypted storage
- DDoS protection and web application firewall (WAF)
Contact Us About Security
If you have questions about our security practices, want to report a vulnerability, or need to make a data-related request, please contact us:
- Email: support@useautoapply.com
- Subject line for security issues: "Security Concern" for priority handling
- Response time: Security-related inquiries receive a response within 24 hours
We take every security report seriously and appreciate responsible disclosure from the community.