1. Information We Collect
1.1 Account Information
When you sign in with GitHub OAuth, we collect your GitHub user ID, display name, avatar URL, and primary email address. This information is used solely to create and maintain your CommitFlow account.
1.2 Repository Data
When you connect a GitHub repository, we store the repository name, webhook configuration, and an encrypted access token. We receive commit messages and metadata via GitHub webhooks to generate changelog entries.
1.3 Usage Data
We collect anonymous usage statistics including page views, entry view counts, and feature usage to improve our service. No personally identifiable information is included in this data.
2. How We Use Your Information
- To provide and maintain the CommitFlow service
- To generate AI-powered changelog entries from your commits
- To send email notifications about published changelogs (only to subscribers who opt in)
- To improve our service based on aggregated usage patterns
3. Data Storage and Security
Your data is stored on Supabase (PostgreSQL) with encryption at rest. GitHub access tokens are encrypted using AES-256-GCM before storage. Session cookies are encrypted with AES-256-GCM when SESSION_SECRET is configured.
We implement industry-standard security practices including:
- HTTPS for all connections
- HMAC-SHA256 signature verification for webhooks
- Rate limiting on all public endpoints
- Row-Level Security (RLS) on database access
- HTML escaping to prevent XSS attacks
4. Data Sharing
We do not sell your personal data. We share data only in the following circumstances:
- GitHub API: We use your access token to read repository data and manage webhooks
- AI Services: Commit messages are sent to DeepSeek or Anthropic (Claude) for changelog generation
- Email Delivery: Subscriber emails are processed through Resend for notification delivery
- Payment Processing: Payment information is handled by Lemon Squeezy (we never see your credit card details)
5. Cookies
We use a single session cookie (commitflow_session) to maintain your authenticated state. This cookie is HTTP-only, Secure, and SameSite=Lax. It does not track you across sites.
6. Subprocessors
| Service | Purpose | Location |
|---|---|---|
| Supabase | Database, Auth, Storage | Global (AWS) |
| Vercel | Application Hosting | Global (Edge Network) |
| DeepSeek / Anthropic | AI Text Generation | US |
| Resend | Email Delivery | US |
| Lemon Squeezy | Payment Processing | US |
7. Your Rights
You have the right to:
- Access your personal data stored in your account
- Delete your account and all associated data at any time
- Unsubscribe from email notifications (one-click unsubscribe in every email)
- Disconnect repositories and revoke GitHub access
- Request a copy of your data by contacting us
8. Retention
We retain your data as long as your account is active. When you delete your account, all associated data (workspaces, entries, repositories, subscribers) is permanently deleted through cascade deletion.
9. Changes to This Policy
We may update this privacy policy from time to time. We will notify users of significant changes through the CommitFlow platform. Continued use of the service after changes constitutes acceptance of the updated policy.
10. Contact Us
If you have questions about this privacy policy or our data practices, please contact us through our feedback channels or open an issue on our GitHub repository.