← Back to Home

Privacy Policy

Last Updated: December 2, 2024

Introduction

Welcome to Pitcht ("we," "our," or "us"). We are committed to protecting your privacy and ensuring you have a positive experience when using our interview practice platform.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our application. Please read this policy carefully to understand our practices regarding your personal data.

Information We Collect

1. Account Information

When you create an account, we collect:

  • Email address
  • Password (encrypted and securely stored)
  • Account preferences and settings
  • OAuth provider information (if using Google sign-in)

2. Practice Session Data

When you use our platform, we collect:

  • Video recordings of your practice sessions
  • Audio transcripts of your responses
  • Session context (job descriptions, topics, questions)
  • Performance metrics (eye contact, speech patterns, pacing)
  • AI-generated feedback and analysis

3. Payment Information

Payment processing is handled securely by Stripe. We do not store your credit card information on our servers. We only receive:

  • Stripe customer ID
  • Subscription status and plan details
  • Payment history and invoice records

4. Usage Data

We automatically collect:

  • Session timestamps and duration
  • Feature usage statistics
  • Error logs and diagnostic information
  • IP address and browser information

How We Use Your Information

We use your information for the following purposes:

  • Service Delivery: To provide interview practice, analysis, and feedback
  • AI Processing: To generate personalized questions and coaching feedback
  • Video Analysis: To analyze eye contact, emotions, and presentation skills
  • Account Management: To manage your account, subscriptions, and preferences
  • Payment Processing: To process payments and manage billing
  • Communication: To send service updates, trial reminders, and support responses
  • Improvement: To analyze usage patterns and improve our services
  • Security: To detect fraud, prevent abuse, and ensure platform security

Third-Party Services

We use the following third-party services to deliver our platform:

Anthropic (Claude AI)

Purpose: Generates interview questions and coaching feedback
Data Shared: Session context, transcripts, performance metrics
Data Retention: Not used for AI training
Privacy Policy: anthropic.com/privacy

OpenAI (Whisper API)

Purpose: Transcribes audio recordings to text
Data Shared: Audio recordings
Data Retention: 30 days, not used for training
Privacy Policy: openai.com/privacy

Supabase

Purpose: Database, authentication, and video storage
Data Shared: All account and session data
Compliance: GDPR, SOC 2 Type II certified
Privacy Policy: supabase.com/privacy

Stripe

Purpose: Payment processing and subscription management
Data Shared: Email, payment information
Compliance: PCI DSS Level 1 certified
Privacy Policy: stripe.com/privacy

MediaPipe (Google)

Purpose: Client-side eye tracking and face analysis
Data Shared: None (runs entirely in your browser)
Privacy Policy: policies.google.com/privacy

Data Storage and Security

We implement industry-standard security measures:

  • Encryption: All data transmitted over HTTPS/TLS
  • Access Control: Row-level security policies enforce data isolation
  • Video Storage: Videos stored in private buckets with time-limited access URLs
  • Password Security: Passwords encrypted using bcrypt hashing
  • API Security: CSRF protection and rate limiting on all endpoints
  • Payment Security: PCI-compliant payment processing through Stripe

Despite our best efforts, no security system is impenetrable. We cannot guarantee the absolute security of your data.

Your Rights

You have the following rights regarding your personal data:

  • Access: Request a copy of your personal data
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your account and all associated data
  • Portability: Export your data in a machine-readable format
  • Opt-Out: Unsubscribe from marketing communications
  • Object: Object to certain processing of your data

To exercise these rights, please contact us at privacy@pitcht.com

Data Retention

  • Active Accounts: Data retained for the duration of your account
  • Deleted Accounts: Data permanently deleted within 30 days
  • Inactive Accounts: Accounts inactive for 1+ year may be deleted after email notice
  • Videos: Stored until you delete them or close your account
  • Payment Records: Retained for 7 years for tax/legal compliance

Children's Privacy

Pitcht is not intended for users under 13 years of age. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information, please contact us immediately.

International Data Transfers

Your data may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. By using Pitcht, you consent to the transfer of your information to our facilities and service providers worldwide.

Cookies and Tracking

We use the following types of cookies:

  • Essential Cookies: Required for authentication and security
  • Functional Cookies: Remember your preferences and settings
  • Analytics Cookies: Help us understand how you use the platform

You can control cookies through your browser settings, but disabling essential cookies may affect platform functionality.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last Updated" date. Significant changes will be communicated via email.

Contact Us

If you have questions or concerns about this Privacy Policy, please contact us:

Email: privacy@pitcht.com

Company: Pitcht, Inc.

Address: New York, New York

For EU/EEA Residents (GDPR)

Under the General Data Protection Regulation (GDPR), you have additional rights including the right to lodge a complaint with a supervisory authority. Our legal basis for processing your data is your consent and our legitimate interest in providing our services.

For California Residents (CCPA)

Under the California Consumer Privacy Act (CCPA), you have the right to request information about the categories of personal information we collect, the purposes for collection, and the categories of third parties we share information with. You also have the right to opt-out of the sale of your personal information. Note: We do not sell your personal information.

© 2026 Pitcht, Inc. All rights reserved.