Privacy Policy

1. Data Controller

The data controller responsible for processing your personal data is:

[Company Name]
[Registered Address]
[Country]
Email: [contact@email]

2. Personal Data We Collect

We collect and process the following categories of personal data when you use our website and services:

• Account data: name, email address, password (hashed), and authentication identifiers.
• Usage data: logs, feature usage, and configuration data related to your projects and integrations.
• Billing data: company details, billing address, and limited payment information (processed via our payment provider).
• Technical data: IP address, device and browser information, and cookies or similar technologies.

3. Purposes and Legal Bases for Processing

We process your personal data only when we have a valid legal basis to do so under the GDPR:

• To provide and operate the service (Art. 6(1)(b) GDPR – performance of a contract), including creating and managing your account, enabling product features, and providing customer support.
• To improve and secure our services (Art. 6(1)(f) GDPR – legitimate interests), such as monitoring usage, preventing abuse, and developing new features.
• To comply with legal obligations (Art. 6(1)(c) GDPR), including tax, accounting, and regulatory requirements.
• For marketing communications (Art. 6(1)(a) GDPR – consent, or Art. 6(1)(f) GDPR – legitimate interests where permitted), such as product updates and newsletters. You can opt out at any time.

4. Sharing Your Data

We do not sell your personal data. We may share it with:

• Service providers who help us operate our infrastructure, analytics, email delivery, payment processing, and customer support. These providers act as data processors and are bound by data protection agreements.
• Integration partners that you explicitly connect to (for example, Git hosting or project management tools), in accordance with your configuration.
• Public authorities where required by law or to protect our rights, users, or the public.

5. International Data Transfers

Where we transfer personal data outside the European Economic Area (EEA), we ensure an adequate level of protection through mechanisms such as adequacy decisions, Standard Contractual Clauses approved by the European Commission, or other appropriate safeguards as required by applicable law.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes described in this Privacy Policy or to comply with legal, accounting, or reporting requirements. When your account is closed, we will delete or anonymize your data within a reasonable period, unless we are required to retain certain information for longer.

7. Your Rights Under GDPR

Subject to applicable law, you have the following rights regarding your personal data:

• Right of access to your personal data.
• Right to rectification of inaccurate or incomplete data.
• Right to erasure ("right to be forgotten").
• Right to restriction of processing.
• Right to data portability.
• Right to object to processing based on legitimate interests or direct marketing.
• Where processing is based on consent, the right to withdraw your consent at any time, without affecting the lawfulness of processing before withdrawal.

To exercise your rights, please contact us at the email address provided above. You also have the right to lodge a complaint with your local data protection authority.

8. Cookies and Similar Technologies

We use cookies and similar technologies to operate our website, enable core functionality, remember your preferences, and analyze how our services are used. Where required by law, we will obtain your consent before setting non-essential cookies. For more information, please refer to our separate Cookie Policy (if available) or contact us.

9. Data Security

We take appropriate technical and organizational measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, or legal requirements. We will post the updated policy on this page and, where appropriate, notify you by email or through the service. The "Last updated" date at the top indicates when the latest changes took effect.

11. Contact

If you have any questions or concerns about this Privacy Policy or our data protection practices, please contact us at:

[Company Name]
Email: [contact@email]
[Optional: Data Protection Officer contact details]