Privacy Policy

1. Overview

This Privacy Policy explains how CommitSignal ("we", "us") handles information when you use our service. We are built around a simple principle: your source code is yours, and it stays that way.

2. Your source code is never stored

CommitSignal analyzes repository activity and code changes to generate signals, but your source code is never stored in our systems. We process activity to produce insights, not to retain your codebase.

3. No sharing with AI providers or third parties

Your source code is never sent to external AI providers, LLMs, or third parties. Repository analysis is performed without exposing your code outside your organization.

4. Information we process

• Account information such as your name and email address.
• Repository metadata and activity used to generate signals (for example, contribution patterns, rework, and complexity).
• Usage data needed to operate and improve the Service.

5. How we use information

We use the information we process to provide the Service, generate insights shown in the platform, maintain security, and improve the product. Access to your repositories is only used to generate the insights shown to you.

6. Permissions

CommitSignal requires read-only access to your repositories. It never writes code, creates pull requests, merges, or alters repository settings.

7. Data retention and removal

You can disconnect CommitSignal at any time and request complete removal of your organization's data. Once removed, the associated insights are deleted from our systems.

8. Security

We apply reasonable technical and organizational measures to protect the information we process against unauthorized access, disclosure, or loss.

9. Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be reflected by updating the date above.

10. Contact

Questions about your privacy? Contact us at hello@commitsignal.com.