Last updated: April 2026
NextStep collects information you provide directly: your name, email address, and resume data. When you connect your email account (Gmail or Outlook), we access job-related emails to help track applications. We do not read or store personal emails unrelated to job applications.
We use your information to: track job applications, discover relevant contacts at companies you've applied to, generate personalized outreach messages, and provide career intelligence features. Your resume data is used only to match skills against job requirements and improve outreach quality.
Your data is stored securely using industry-standard encryption. OAuth tokens for email integrations are encrypted with AES-256-GCM. We use HTTPS for all communications. Passwords are hashed with bcrypt.
NextStep uses AI (OpenAI) to help parse job postings, generate outreach messages, and analyze resumes. Only the minimum necessary context is sent to AI providers — we never send your full email content, personal email addresses, or OAuth tokens to AI services.
We do not sell your personal information. We share data only with service providers necessary to operate NextStep (hosting, email delivery, AI processing) under strict data processing agreements.
You can export all your data, delete your account and all associated data, or disconnect email integrations at any time from your Settings page.
For privacy inquiries, contact us at [email protected].