SumGit SumGit Back

Privacy Policy

Last updated: January 2025

1. Introduction

SumGit ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our service.

2. Information We Collect

We collect the following types of information:

  • GitHub Account Data: Your GitHub username, email, and profile information provided through GitHub OAuth
  • Repository Metadata: Repository names, descriptions, commit messages, timestamps, and author information
  • Usage Data: Information about how you interact with our Service, including pages visited and features used

3. What We Do NOT Collect

We explicitly do not collect or store:

  • Your source code or file contents
  • Private repository content beyond commit metadata
  • GitHub access tokens (we use OAuth sessions)
  • Payment information (we use third-party payment processors)

4. How We Use Your Information

We use collected information to:

  • Provide and maintain the Service
  • Analyze your commit history to identify milestones
  • Generate AI-powered summaries of your development progress
  • Improve and optimize our Service
  • Communicate with you about your account or the Service

5. Data Storage and Security

Your data is stored securely using Supabase, which provides enterprise-grade security including encryption at rest and in transit. We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

6. Third-Party Services

We use the following third-party services:

  • GitHub: For authentication and repository access
  • Supabase: For data storage and authentication
  • OpenAI: For AI-powered commit analysis (only commit metadata is shared)
  • Cloudflare: For hosting and content delivery

7. Data Retention

We retain your data for as long as your account is active. You can request deletion of your data at any time by disconnecting your GitHub account and contacting us. Upon deletion request, we will remove your personal data within 30 days, except where retention is required by law.

8. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Revoke GitHub access permissions at any time
  • Export your data in a portable format

9. Cookies

We use essential cookies to maintain your session and authentication state. We do not use tracking cookies or third-party advertising cookies. You can control cookie settings through your browser preferences.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

11. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us at support@codedeen.com.