Privacy Policy

We operate with a strict Zero Retention policy regarding your source code.

• Volatile Processing: When you initiate a scan, your source code is cloned into a temporary, isolated Docker container in volatile memory (RAM).
• Immediate Destruction: Once the security analysis is complete and the report is generated, the container and all associated file systems are immediately destroyed.
• No Database Storage: We do NOT store your source code in our database. We only store the resulting security report (metadata, vulnerability counts, and remediation advice) to provide you with history and analytics.

We collect only the essential data required to provide the Service:

• Identity Data: Email address, GitHub username, and profile picture (via OAuth).
• Technical Data: IP address, browser type, and device information for security and logs.
• Usage Data: Scan history, payment status (via Stripe), and interaction with the dashboard.

To deliver our Service, we share data with trusted third-party infrastructure providers. All providers are GDPR-compliant.

We use Technical Cookies only. These are strictly necessary for the operation of the website, such as managing your login session and authentication state.

For more details, please view our full Cookie Policy.

Under the General Data Protection Regulation (GDPR), you have the right to:

• Access: Request a copy of the personal data we hold about you.
• Rectification: Correct any inaccurate or incomplete data.
• Deletion (Right to be Forgotten): Request the permanent deletion of your account and data.
• Portability: Receive your data in a structured, machine-readable format.

To exercise any of these rights, please contact us at support@reposhield.ai.