Privacy Policy

1. Introduction

CodeProof ("we", "our", "us") operates the CodeProof website, CLI tool, and GitHub App (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

2. Information We Collect

Account Information

When you sign up via GitHub, we receive your GitHub username, email address, and public profile information as authorized by GitHub's OAuth flow.

Code Data

When you use the CLI or GitHub App, we process code diffs from your repositories to generate test suggestions. We do not store your source code permanently. Code diffs are processed in memory and discarded after test generation is complete.

Usage Data

We collect anonymized usage metrics including: number of test generations, frameworks used, and feature usage. This data helps us improve the Service and is not tied to your source code.

Payment Information

Payment processing is handled by Stripe. We do not store credit card numbers or bank account details. We retain Stripe customer IDs and subscription status to manage your account.

3. How We Use Your Information

• To provide and maintain the Service
• To generate AI-powered test suggestions from your code diffs
• To process payments and manage subscriptions
• To send important service updates and security notices
• To improve the Service based on aggregated usage patterns
• To respond to support requests

4. Data Sharing

We do not sell your personal information. We may share data with:

• Stripe — for payment processing
• AI providers — code diffs are sent to AI APIs (Anthropic Claude) for test generation. These providers process data per their own privacy policies and do not retain your data for training.
• Infrastructure providers — hosting services (Railway, Vercel) that operate our Service

5. Data Retention

Code diffs are processed transiently and not stored. Account data is retained while your account is active. Usage metrics are retained in anonymized form. You may request deletion of your account and associated data at any time by contacting us.

6. Security

We implement industry-standard security measures including encrypted connections (TLS), secure credential storage, and webhook signature verification. However, no method of transmission over the Internet is 100% secure.

7. Your Rights

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Export your data in a portable format
• Withdraw consent for optional data processing

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or a prominent notice on our website. Continued use of the Service after changes constitutes acceptance.

9. Contact

For privacy-related questions or requests, contact us at privacy@getcodeproof.dev.