BETA
Start 3-Day Free Trial

Privacy Policy

Effective Date: September 17, 2025

1. Information We Collect

OAuth Authentication Data: We collect your name, avatar image URL, and email address when you authenticate via OAuth.

Payment Information: We process payments with Stripe and do not store credit card details; Stripe handles all card information.

Usage & Session Data: We record IP address, user-agent string, browser type, operating system, referral source, and interaction data (pages visited, links clicked, time spent).

Cookies & Tracking: We use cookies and similar technologies to remember preferences, analyze usage, and deliver personalized content.

Session Data: We record session metadata in our database, including user IP address and user-agent string. We do not save, store, or otherwise persist your application code beyond the duration required to perform real-time analysis in pull requests.

2. How We Use Your Information

We use your data to:

  • Authenticate and manage your account via OAuth.
  • Process payments and issue confirmations via Stripe.
  • Administer refunds within 14 days of payment.
  • Communicate with you and respond to support requests.
  • Monitor, analyze, and improve our Services using the authorized Google Gemini API for automated pull request reviews.
  • Detect and prevent fraud or unauthorized activity.
  • Comply with legal obligations and enforce our policies.

3. Refund Policy

You may request a refund within 14 days of payment. Refunds are processed via your original payment method through Stripe. After 14 days, all sales are final.

4. Legal Bases for Processing (GDPR)

We rely on:

  • Consent you have given.
  • Contractual necessity.
  • Legal obligations.
  • Our legitimate interests, when not overridden by your rights.

5. Data Sharing & Disclosure

We do not sell your personal information. We share data with:

  • Service providers (e.g., Stripe, hosting, analytics).
  • Affiliates and subsidiaries (internal business).
  • Authorities when required by law.
  • Third parties in a corporate transaction, subject to confidentiality.

6. International Transfers

Your data may be transferred outside your country. We use Standard Contractual Clauses and other safeguards to protect it.

7. Data Retention

We keep data only as long as needed to fulfill purposes, comply with laws, resolve disputes, and enforce agreements.

8. Your Rights

Depending on your jurisdiction, you may have rights to access, correct, delete, restrict, or port your data, and to withdraw consent. Contact us to exercise these rights.

9. Security

We implement industry-standard measures to protect data but cannot guarantee complete security of transmissions.

10. Children’s Privacy

Our Services are not for children under 16. We do not knowingly collect data from children under 16 and will delete any such data.

11. Third-Party Links

We are not responsible for third-party sites linked from our Services. Please review their privacy policies.

12. Changes to This Policy

We may update this policy. We’ll post the revised date and notify you where appropriate.

13. Contact Us

For privacy inquiries, email hello@shieldcode.space.