Privacy Policy

1. Information We Collect

We collect the following information:

  • Email Address: For authentication and sending usage alerts
  • CI Tokens: GitHub and Bitrise tokens are encrypted and stored to fetch your CI/CD usage data
  • Usage Data: CI/CD usage data (minutes, credits) from your connected accounts
  • Analytics: Basic, privacy-respecting usage analytics (page views, feature usage) via Vercel Analytics. No personal information is tracked.

2. How We Use Your Information

  • To provide GitHub Actions usage tracking and predictions
  • To send email alerts when your usage reaches configured thresholds
  • To improve our service through anonymous analytics
  • We do NOT sell or share your data with third parties

3. Data Security

We implement industry-standard security measures:

  • GitHub tokens are encrypted using AES-256-CBC encryption
  • Secure HTTPS connections for all data transmission
  • HTTP-only, secure cookies for authentication
  • Regular security audits and updates

4. Cookies & Analytics

We use cookies and analytics for:

  • Essential Cookies: Session authentication (required for the service to function)
  • Analytics Cookies: Vercel Analytics (optional, can be declined via cookie consent banner)
  • Usage Analytics: We track basic events like page views, feature usage (e.g., "alert created", "dashboard viewed") to understand which features are most valuable. This data is anonymous and does not include any personal information.

5. Your Rights (GDPR)

Under GDPR, you have the right to:

  • Access: Request a copy of your data
  • Deletion: Request deletion of your account and all associated data
  • Correction: Update incorrect information
  • Portability: Export your data in a machine-readable format
  • Opt-out: Disable alerts via Alert Settings

6. Data Retention

We retain your data for as long as your account is active. When you delete your alert or account, all associated data is permanently removed from our systems.

7. Third-Party Services

We use the following third-party services:

  • GitHub API: To fetch your usage data
  • Resend: To send email alerts
  • Vercel: For hosting, database, logging, and privacy-respecting analytics

All third-party services are carefully selected for their privacy practices and security standards.

8. Changes to This Policy

We may update this policy from time to time. Continued use of the service after changes constitutes acceptance of the updated policy.

9. Contact

For privacy-related questions or to exercise your rights, please contact us through GitHub issues or email.

Last updated: January 15, 2026