Enterprise-grade security and compliance standards protect your interview data
We take security seriously with industry best practices and secure infrastructure
Industry-standard encryption for data in transit and at rest. All communications are secured with TLS.
Your API keys are stored locally on your device, not in the cloud. You maintain full control over your credentials.
Interview recordings are never permanently stored on our servers. Data is processed and deleted within 24 hours.
Hosted on trusted cloud providers with enterprise-grade security and regular backups.
We never sell your data to third parties. Your interview data is yours alone.
Delete your account and all associated data at any time. We respect your right to be forgotten.
All data transmitted between your device and our servers is encrypted using industry-standard TLS 1.3 protocols.
Optional 2FA using authenticator apps or SMS to add an extra layer of security to your account.
Your API keys for AI providers are stored securely on your local device, never in the cloud.
We only collect data necessary for the service. Interview transcripts are not stored permanently by default.
Regular encrypted backups stored in geographically redundant locations for disaster recovery.
Delete your account and all associated data permanently with one click. We respect your right to be forgotten.
Your Rights: You have the right to access, modify, and delete your data at any time. We provide transparent privacy practices.
Never Sold: We never sell your personal data to third parties. Your interview data is yours alone.
API Keys: Your AI provider API keys are stored locally on your device, ensuring you maintain full control.
No Permanent Storage: Interview recordings are processed and deleted within 24 hours unless you choose to save them.
Right to be Forgotten: You can delete your account and all associated data at any time through your account settings.
Clear Policies: We maintain clear and honest privacy policies. Read our full privacy policy for details.
We have a comprehensive incident response plan and will notify you if your data is compromised
Our 24/7 security monitoring detects potential security incidents immediately. Automated alerts notify our incident response team.
Security team investigates the incident scope, affected systems, and data. We document all findings and actions taken.
We immediately isolate affected systems to prevent further damage. Backup systems are activated if needed.
Affected users are notified via email with incident details and steps to protect themselves. Regulatory authorities are notified if required.
Systems are fully restored. We conduct post-incident reviews and implement improvements to prevent future incidents.
We continuously monitor our infrastructure for security threats and vulnerabilities. Regular security updates and patches are applied to maintain a secure environment for your data.
Help us keep your account secure by following these best practices
Use a unique, strong password with at least 12 characters including uppercase, lowercase, numbers, and symbols.
Turn on two-factor authentication for added security. Use an authenticator app instead of SMS when possible.
Never share your password or login credentials with others. Use unique tokens for API access instead.
Access InterviewGlitch on secure, trusted WiFi networks. Avoid public WiFi for sensitive account changes.
Update your browser, OS, and antivirus software regularly to patch security vulnerabilities.
Review login activity and account changes regularly. We'll notify you of suspicious activity.
Contact our security team with questions about our practices, compliance, or to report a security vulnerability.
Responsible Disclosure: Found a vulnerability? Please report it confidentially to our security team. We have a bug bounty program.