RoleHelix

Legal

Privacy Policy

Last updated: February 2026

RoleHelix Labs ("RoleHelix," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the RoleHelix platform, including our website, applications, and related services (collectively, the "Service").

By using the Service, you agree to the collection and use of information in accordance with this policy.

1. Data We Collect

We collect the following types of information:

Personal Information

  • Account information: Name, email address, and password when you create an account.
  • Profile data: Professional details you choose to provide, such as education history, skills, and career interests.

Assessment Data

  • Assessment responses: Answers and selections you make during the CareerDNA assessment and any subsequent evaluations.
  • Results and scores: Computed career compatibility scores, personality trait analyses, and role recommendations generated from your assessment data.

Content and Artifacts

  • Portfolio content: Projects, case studies, writing samples, and other artifacts you create or upload to the platform.
  • Task submissions: Work completed as part of guided learning tasks and career development activities.

Usage Data

  • Device and browser information: IP address, browser type, operating system, and device identifiers.
  • Interaction data: Pages viewed, features used, time spent on the platform, and navigation patterns.
  • Referral data: How you arrived at our platform (e.g., search engine, direct link, referral).

2. How We Use Your Data

We use the information we collect to:

  • Provide and operate the Service: Deliver career assessments, generate personalized role recommendations, and enable portfolio creation.
  • Personalize your experience: Tailor content, guides, and task recommendations based on your assessment results and progress.
  • Improve the platform: Analyze usage patterns to identify bugs, optimize performance, and develop new features.
  • Communicate with you: Send account notifications, service updates, and (with your consent) marketing communications about new features or content.
  • Ensure security: Detect and prevent fraud, abuse, and unauthorized access to the Service.

3. Payment Processing

All payment processing is handled by Stripe, our third-party payment processor. When you make a purchase, your payment information (credit card number, billing address) is transmitted directly to Stripe and is never stored on our servers. We only receive confirmation of payment status, transaction IDs, and the last four digits of your card for record-keeping purposes.

Stripe's privacy policy and security practices govern the handling of your payment information. We encourage you to review Stripe's privacy policy at stripe.com/privacy.

4. Data Storage and Security

Your data is stored securely using Supabase cloud infrastructure, which provides enterprise-grade security including encryption at rest and in transit, regular backups, and access controls. Our database infrastructure is hosted on AWS data centers with SOC 2 Type II compliance.

While we implement commercially reasonable security measures, no method of electronic storage or transmission over the internet is 100% secure. We cannot guarantee absolute security of your data.

5. Cookies

We use authentication cookies only, managed through Supabase Auth. These cookies are essential for maintaining your login session and do not track your browsing activity across other websites. We do not use advertising cookies, analytics cookies, or third-party tracking cookies.

6. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data under applicable data protection laws including the GDPR:

  • Right to access: Request a copy of the personal data we hold about you.
  • Right to correction: Request that we correct inaccurate or incomplete personal data.
  • Right to deletion: Request that we delete your personal data, subject to certain legal exceptions.
  • Right to data portability: Request a copy of your data in a structured, machine-readable format for export.
  • Right to restrict processing: Request that we limit how we use your personal data.
  • Right to object: Object to the processing of your personal data for certain purposes, such as direct marketing.

To exercise any of these rights, please contact us at privacy@rolehelix.com. We will respond to your request within 30 days.

7. Data Retention

We retain your personal data for as long as your account is active or as needed to provide you with the Service. If you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required to retain certain information for legal, regulatory, or legitimate business purposes (such as fraud prevention or dispute resolution).

Assessment data and generated results may be retained in anonymized, aggregated form for research and platform improvement purposes.

8. Third-Party Services

Our Service may integrate with or contain links to third-party services. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party services you access through our platform.

9. Children's Privacy

The Service is not intended for individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected data from a child under 16, we will take steps to delete that information promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page with a revised "Last updated" date. Your continued use of the Service after any changes constitutes your acceptance of the updated policy.

11. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at: