Back to Home

Privacy Policy

Privacy Policy

Last updated: November 20, 2025

Welcome to CodeCheck (codecheck.co).
We value your privacy and are committed to protecting your personal information.

This Privacy Policy explains how we collect, use, store, and safeguard data when you use CodeCheck’s services, including AI-based code analysis and repository scanning.

1. Information We Collect

1.1 Account Information

When you sign up using email or OAuth (GitHub, Google, etc.), we collect:

  • Name
  • Email address
  • Authentication identifiers

1.2 Repository Access Information

When you connect your Git provider (GitHub, GitLab, Bitbucket), we request read-only access to your repositories.

We collect:

  • Repository metadata (name, branch, size, language)
  • Temporary clone for analysis
  • No write access is ever used
  • No code is permanently stored after analysis is completed

1.3 Usage Information

We automatically collect:

  • Logs (non-sensitive)
  • Device information
  • IP address (for security)
  • Timestamps of actions

1.4 Payment Information

Payments are securely processed via Paddle.
We do not store credit card or financial information.

2. How We Use Your Information

We use collected data to:

  • Provide code analysis reports
  • Improve accuracy of AI insights
  • Maintain account functionality
  • Ensure security and fraud prevention
  • Provide customer support
  • Process payments and subscriptions
  • Comply with legal obligations

3. Repo & Code Handling

We never store your source code permanently.

Your code is:

  1. Temporarily cloned
  2. Analyzed locally on the worker
  3. Deleted immediately after the analysis job completes

We do NOT:

  • Access private repos without your permission
  • Modify, push, or write to your repositories
  • Share your code with third parties

4. Data Retention

We retain:

  • Account information (until deletion)
  • Reports generated by our AI
  • Subscription & billing information (per compliance)

We permanently delete:

  • Temporary repository files after analysis
  • All code extracted during scanning

5. Third-Party Services

We use:

  • Paddle (billing)
  • Supabase (auth & database)
  • AI providers (OpenAI, Google, Anthropic)

These providers may process limited data necessary for our service.

6. Your Rights

You may:

  • Request a copy of your personal data
  • Request deletion of your account
  • Revoke Git repo access at any time
  • Opt out of newsletters/promotions

7. Data Security

We use:

  • Encrypted storage (where required)
  • Access tokens stored securely (server-only)
  • HTTPS everywhere
  • Strict access permissions

8. Children's Privacy

CodeCheck is not intended for children under 13.

9. Changes to This Policy

We may update this policy. Continued use of the service means you accept the updated terms.

10. Contact Us

For questions related to privacy: support@codeaamy.com