PushPilotBack to Home

Privacy Policy

Last Revised: January 15, 2025

Version: 1.0

PushPilot Inc. ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our SaaS platform, browser extensions, or otherwise engage with our services (collectively, the "Service").

1. INFORMATION WE COLLECT

We collect information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or device ("Personal Information").

1.1 Information You Provide to Us

  • Identity Data: First name, last name, username, or similar identifier.
  • Contact Data: Billing address, email address, and telephone numbers.
  • Financial Data: Partial payment card details (processed securely via Stripe/payment processors).
  • Content Data: Source code, repository metadata, commit history, and technical specifications you upload or connect via GitHub/GitLab integration.

1.2 Information We Collect Automatically

  • Technical Data: Internet Protocol (IP) address, login data, browser type and version, time zone setting, operating system, and platform.
  • Usage Data: Information about how you use our website, products, and services, including clickstream data, revision history, and feature interaction.

2. HOW WE USE YOUR INFORMATION

We use Personal Information for the following business purposes:

  • Service Provision: To provide, operate, and maintain the Service, including processing automated code revisions.
  • AI Training & Improvement: To improve our algorithms and AI models (on an aggregated, anonymized basis unless agreed otherwise).
  • Billing: To process transactions and manage subscriptions.
  • Security: To detect, prevent, and address technical issues, fraud, and security breaches.
  • Communication: To send you updates, security alerts, and administrative messages.

3. SHARING OF INFORMATION

We do not sell your Personal Information. We may share information with:

  • Service Providers: Third-party vendors who perform services on our behalf, such as cloud hosting (AWS), payment processing (Stripe), and AI inference (OpenAI, Anthropic). These providers are bound by confidentiality agreements.
  • Legal Compliance: If required by law, subpoena, or legal process.
  • Business Transfers: In connection with a merger, sale, or asset transfer.

4. DATA RETENTION

We retain your Personal Information only for as long as is necessary for the purposes set out in this Privacy Policy. Source code cache is generally ephemeral and deleted after processing, except where retained for context in active projects. Login security logs (with truncated IP addresses and normalized user-agent strings) are retained for approximately 60 days before deletion.

5. LEGAL BASES FOR PROCESSING (GDPR)

Where GDPR applies, we process Personal Information based on:

  • Consent: Where you choose to create an account, connect integrations, or opt in to communications.
  • Legitimate Interests: To secure our Service, prevent fraud, detect abuse, and maintain platform reliability. We balance these interests against your privacy rights and apply data minimization measures.
  • Contractual Necessity: To provide the Service you request and fulfill our contractual obligations.

6. SECURITY PRACTICES

We implement industry-standard security measures, including encryption in transit (TLS/SSL) and at rest, strict access controls, and regular security audits. However, no method of transmission over the Internet is 100% secure.

7. YOUR DATA PROTECTION RIGHTS (GDPR & CCPA)

Depending on your location, you may have the following rights:

  • Right to Access: Request copies of your personal data.
  • Right to Rectification: Request correction of inaccurate data.
  • Right to Erasure: Request deletion of your data ("Right to be Forgotten").
  • Right to Restrict Processing: Request restriction of processing under certain conditions.
  • Right to Data Portability: Request transfer of data to another organization.

To exercise these rights, please contact us at [email protected].

8. INTERNATIONAL DATA TRANSFERS

Your information may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ (e.g., the United States). By using the Service, you consent to this transfer.

9. CHILDREN'S PRIVACY

Our Service is not intended for individuals under the age of 18 ("Children"). We do not knowingly collect personally identifiable information from children.

10. CONTACT US

If you have questions or concerns about this Privacy Policy, please contact us at:
PushPilot Inc.
Email: [email protected]