Privacy Policy

Account details from the provider you sign in with (GitHub or Google) or the email address you use for a magic link. The source you submit for scanning — a GitHub repo reference or an uploaded ZIP. Product usage data (scans run, features used).

We read the code you submit; we never execute it. Uploaded ZIPs are stored only as long as needed to run a scan and are deleted afterward. Before any code is sent to an AI model for narrative or fix-prompt generation, secrets are redacted. You are responsible for the code you submit and confirm you have the right to share it with us for scanning.

To run scans, show you results, operate your account, process payments, and improve the product. We do not sell your personal information.

We rely on Supabase (auth, database, storage), Cloudflare (hosting, network), an AI provider for narrative generation, and Stripe for billing. Each processes data only to provide its service.

You can request access to or deletion of your data. Email privacy@mail.signalpointsystems.com.