Privacy Policy

Last updated: March 14, 2026

What we collect

When you sign up, we collect your name, email address, and GitHub profile information through OAuth. We use this to create and manage your account.

When you connect repositories, GitSignal accesses commit diffs and pull request metadata through the GitHub API. We never store your source code. We analyze diffs in real time and store only the generated insights (summaries, metrics, time estimates).

How we use your data

• Generate automated standups and engineering reports
• Calculate developer metrics weighted by effort and complexity
• Power the AI assistant with context about your engineering activity
• Improve our AI models and analysis accuracy

Data storage and security

All data is encrypted in transit (TLS 1.3) and at rest (AES-256). We use Neon PostgreSQL for data storage, hosted in the United States. Access to production systems is restricted and audited.

Third-party services

• GitHub API — to read commit and PR data from your connected repositories
• Google Vertex AI (Gemini) — to analyze code changes and generate insights
• Vercel — hosting and edge delivery
• Neon — PostgreSQL database hosting

We do not sell your data to third parties. We do not use your code or data for advertising.

Your rights

You can disconnect repositories, export your data, or delete your account at any time from your account settings. When you delete your account, all associated data is permanently removed within 30 days.

Cookies

We use essential cookies for authentication and session management. We use Vercel Analytics for anonymous usage statistics — no personal tracking cookies.

Contact

Questions about this policy? Email us at hello@gitsignal.ai.