Privacy Policy

Last updated: placeholder. Replace with the canonical version supplied by counsel before launch.

1. What we collect

• Authentication identifiers from GitHub or Google (account ID, email, display name, avatar URL).
• GitHub App installation metadata and the list of repositories you authorize for monitoring.
• API definitions, repository contents, and pull request metadata required to detect breaking changes.
• Billing identifiers from Stripe (customer ID, subscription state). Payment card data is handled by Stripe and never touches our servers.

2. How we use it

Data is used to operate the Service: comparing API definitions over time, generating pull requests on dependent repositories, sending notifications, and providing the dashboard. We do not sell your data.

3. Storage & retention

Account, organization, and discovery data is stored in our PostgreSQL database hosted in our cloud provider. Secrets (GitHub tokens, webhook secrets) are stored encrypted in AWS SSM Parameter Store. We retain data while your subscription is active and for a reasonable period afterwards for accounting; you can request deletion at any time.

4. Sharing

We share data only with the subprocessors required to run the Service: AWS (hosting & email), Stripe (billing), GitHub and Google (auth). We do not share your repository contents with third parties.

5. Your rights

You can access, export, or delete your data by contacting us. EU and UK users have additional rights under GDPR.

6. Contact

Reach us at privacy@liblab.com for any privacy-related questions.