Privacy Policy

1. Introduction

Live Interview AI ("we," "our," or "the Service"), operated by Hossam Elkomy and based in Dubai, United Arab Emirates, respects your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our service at liveinterviewai.com. By using the Service, you consent to the practices described in this policy.

2. Information We Collect

Account Information

• Name and email address (provided during registration via OAuth)
• Authentication tokens and session data (managed through our OAuth provider)
• Subscription tier and status (Free or Pro)

Usage Data

• Questions submitted to the AI (via text input or voice transcription)
• AI-generated responses within your active session
• Selected interview domain preferences
• Daily question count for usage limit tracking
• Font size and display preferences

Uploaded Documents

• CV/Resume files uploaded for answer personalization
• Reference documents (PDF, DOCX, XLSX, PPTX, TXT, MD) uploaded for context
• Extracted text content from uploaded files (stored in encrypted cloud storage)

Technical Data

• Browser type and version
• Device type and operating system
• IP address
• Pages visited and interaction patterns
• Referring URLs

Payment Information

We do not collect, store, or process any payment card details, bank account information, or billing addresses. All payment processing is handled exclusively by Paddle.com Market Limited ("Paddle"), which acts as the Merchant of Record. Paddle collects and processes payment information directly under their own Privacy Policy. We only receive from Paddle: your Paddle customer ID and subscription ID for account management purposes.

3. How We Use Your Information

• To provide and operate the AI interview coaching service
• To personalize AI-generated answers based on your CV, uploaded documents, and selected domain
• To manage your account, authentication, and subscription status
• To enforce usage limits based on your subscription tier
• To communicate service updates, security alerts, and important notices
• To analyze aggregated usage patterns and improve the Service
• To detect and prevent fraud, abuse, or violations of our Terms of Service

4. Legal Basis for Processing

We process your personal data on the following legal bases:

• Contract performance: Processing necessary to provide the Service you have subscribed to
• Legitimate interest: Improving the Service, preventing fraud, and ensuring security
• Consent: Where you have explicitly consented to specific data processing activities
• Legal obligation: Where processing is required to comply with applicable laws

5. Data Storage and Security

Your data is stored on secure cloud servers with industry-standard security measures. Uploaded documents are stored in encrypted cloud storage (Amazon S3) with access controls. We implement HTTPS encryption for all data in transit, secure authentication tokens, role-based access controls, and regular security reviews. However, no method of electronic storage or transmission is 100% secure, and we cannot guarantee absolute security.

6. AI Processing

Questions and uploaded document content are sent to AI language models to generate interview answers. This processing occurs in real-time. We do not use your questions, documents, or AI-generated answers to train AI models. AI processing is performed solely to deliver the Service to you. Conversation context within a session is maintained temporarily and is not persisted after the session ends unless required for service functionality.

7. Voice Data

When using voice mode, audio is processed by the Web Speech API (provided by your browser) for real-time transcription. Audio data is processed locally in your browser and is not transmitted to or stored on our servers. For Pro users opting for Whisper-based transcription, audio is sent to our server for processing and is immediately discarded after transcription is complete. We do not retain any audio recordings.

8. Third-Party Services

We use the following third-party services, each with their own privacy policies:

• Paddle (Payment Processor & Merchant of Record): Handles all billing, invoicing, tax calculation, and payment processing. Paddle Privacy Policy
• Amazon S3 (Cloud Storage): Secure storage for uploaded documents and files
• Manus OAuth (Authentication): Secure user authentication and account management
• Analytics: Anonymous, aggregated usage analytics to improve the Service. No personally identifiable information is shared with analytics providers.
• Meta Pixel (Facebook/Instagram): We use the Meta Pixel to measure the effectiveness of our advertising campaigns on Facebook and Instagram. The Pixel collects data about page views and website interactions, which Meta uses to deliver targeted ads and measure conversions. This data is processed by Meta Platforms, Inc. in accordance with their Data Policy. You can opt out of Meta's interest-based advertising through your Facebook Ad Settings.

9. Data Retention

Account data is retained as long as your account is active. Uploaded documents can be removed at any time through the app interface and are deleted from storage immediately upon removal. Upon account deletion request, all associated personal data is permanently removed within 30 days. Anonymized, aggregated usage analytics data may be retained indefinitely as it cannot be linked to individual users. Paddle retains payment records independently in accordance with their own data retention policies and legal obligations.

10. Your Rights

Depending on your jurisdiction, you may have the following rights:

• Access: Request a copy of the personal data we hold about you
• Rectification: Request correction of inaccurate personal data
• Erasure: Request deletion of your account and associated data
• Portability: Request your data in a structured, machine-readable format
• Restriction: Request limitation of processing in certain circumstances
• Objection: Object to processing based on legitimate interest
• Withdraw consent: Where processing is based on consent, withdraw it at any time

To exercise any of these rights, contact us at [email protected]. We will respond to your request within 30 days.

11. Cookies

We use essential cookies for authentication and session management. These cookies are strictly necessary for the Service to function and cannot be disabled. We use analytics cookies to understand how the Service is used in aggregate. We also use the Meta Pixel, which places cookies on your device to track page views and measure the effectiveness of our Facebook and Instagram advertising campaigns. You can control non-essential cookie preferences through your browser settings. You can opt out of Meta tracking by adjusting your Facebook Ad Preferences or using browser-based opt-out tools such as the Digital Advertising Alliance opt-out page.

12. Children's Privacy

The Service is not intended for users under the age of 16. We do not knowingly collect personal information from children under 16. If you believe a child has provided us with personal data, contact us immediately and we will take steps to delete such information.

13. International Data Transfers

Your data may be processed on servers located outside the United Arab Emirates, including in regions where our cloud infrastructure providers operate. We ensure appropriate safeguards are in place for international data transfers, including standard contractual clauses and compliance with applicable data protection laws. By using the Service, you consent to the transfer of your data to these locations.

14. Data Breach Notification

In the event of a data breach that affects your personal information, we will notify affected users via email within 72 hours of becoming aware of the breach, in accordance with applicable data protection laws. We will also notify relevant supervisory authorities where required.

15. Changes to This Policy

We may update this Privacy Policy at any time by posting the revised version on this page with an updated "Last updated" date. We will notify registered users of material changes via email at least 14 days before they take effect. Continued use of the Service after changes constitutes acceptance of the updated policy.

16. Contact

For privacy-related inquiries, data access requests, or complaints, contact us at [email protected].