Last updated: February 2026

1. Information We Collect

We collect the following information when you use Review My Code:

Account information: Email address, username, and password (hashed)
GitHub data: Repository metadata and pull request content submitted for review, including pull request diffs and selected review context needed for analysis
Payment information: Processed securely by Stripe; we do not store your card details
Usage data: Review history, feature usage, and interaction logs

2. How We Use Your Information

We use your information to:

Provide and improve the code review Service
Process payments and manage subscriptions
Send important account and service notifications
Ensure security and prevent fraud

3. Code Privacy

For GitHub App reviews, repository checkout and context extraction run in GitHub Actions. RMCode receives the pull request diff, file tree and symbol metadata, and selected snippets needed to provide the review. For CLI reviews, the `rmcode` command runs in your local repository to collect the requested diff, file, or stdin content, then sends that review content to RMCode. We use review context from both channels with our AI/model service providers to generate findings. We do not sell your code or use code content to train AI models. Review results are stored securely and accessible only to your account.

4. Data Sharing

We do not sell your personal information. We share data only with service providers essential to operating the platform (e.g., Stripe for payments, Google Cloud for infrastructure, and AI/model providers for review analysis).

5. Data Security

We implement industry-standard security measures including encrypted data transmission (TLS), encrypted storage for sensitive credentials, and regular security audits.

6. Your Rights

You have the right to:

Access your personal data
Request correction of inaccurate data
Request deletion of your account and data
Export your review history

7. Data Retention

We retain account, billing, repository, review, and usage records while your account is active. When you delete your account, we cancel active Stripe subscriptions, delete account-linked API keys, repositories, review content, findings, SSO/OAuth sessions, webhooks, and GitHub App review records tied to your account, and unlink or anonymize related usage and marketing records. Some limited records may be retained when required for security, fraud prevention, tax, accounting, or legal obligations.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or in-app notification.

9. Contact

For privacy-related questions, please contact us at privacy@review-my-code.com.