Effective date: March 27, 2026
JobAnvil is a desktop application published by Astroloye LLC. This policy describes what data JobAnvil accesses, where it goes, and how it is protected.
All data JobAnvil collects — job listings, email content, resumes, application history, and configuration — is stored exclusively on your computer in your local application data directory. JobAnvil does not operate a cloud backend and does not transmit your data to Astroloye LLC or any third party for storage.
JobAnvil reads your email inbox to find job alert messages. Depending on your setup, it connects via one of the following:
Email content is processed locally. It is never sent to Astroloye LLC.
JobAnvil sends job listing data and portions of your candidate profile to the AI provider you choose (Anthropic, OpenAI, Google Gemini, Mistral, or Groq) to generate match scores, summaries, and tailored resumes. This uses your own API key (Bring Your Own Key model). Astroloye LLC does not see, store, or bill for your AI usage. Refer to your chosen provider's privacy policy for how they handle data sent via their API.
JobAnvil retrieves public job listings from sources you configure:
No personal information is sent to job boards. Only publicly available listing data is retrieved.
The optional JobAnvil browser extension for Chrome and Edge captures job listing details (title, company, description, URL) from LinkedIn job pages and can import your LinkedIn profile text for resume optimization. Captured data is sent to the JobAnvil desktop app on your computer via Chrome's native messaging protocol — a local-only communication channel that does not traverse the internet. No data is sent to Astroloye LLC or any external server by the extension.
JobAnvil validates your license key through Lemon Squeezy (our payment processor). The only data transmitted is your license key and a machine identifier for activation. No personal data, job data, or usage telemetry is included.
All sensitive credentials (OAuth tokens, IMAP passwords, AI API keys) are encrypted at rest using Windows Data Protection API (DPAPI), which ties encryption to your Windows user account. Credentials cannot be read by other users on the same machine.
JobAnvil periodically checks for updates by contacting a GitHub-hosted endpoint (raw.githubusercontent.com) over HTTPS. The only data transmitted is a version check request — no personal data, usage data, or device identifiers are included. Updates are optional and installed only with your consent.
JobAnvil does not collect usage analytics, crash reports, or telemetry of any kind. There are no tracking pixels, no phone-home requests, and no data shared with advertising networks.
Since all data is local, you have full control. You can delete any data through the app's Reset Settings panel, or by deleting the application data folder directly. Uninstalling JobAnvil removes the application but leaves your data folder intact so you don't lose history accidentally — delete it manually if desired.
We may update this policy when we add new integrations or features. Material changes will be noted in the app's release notes. The effective date above reflects the latest revision.
Questions about this policy: hello@jobanvil.io