Privacy Policy

Last updated: March 8, 2026

CodeSentri ("we", "our", "us") is an AI-powered code review tool that operates as a GitHub App. This policy explains what data we collect, how we use it, and your rights.

1. Data We Collect

When you install CodeSentri on your GitHub repositories, we access and process:

• Pull request diffs and file metadata — We read the code changes in your pull requests to perform AI-powered code review. This data is sent to Anthropic's Claude API for analysis.
• GitHub account information — Your GitHub username, account type (user/organization), and installation ID, as provided by GitHub during app installation.
• Usage data — We track the number of reviews performed per installation for billing and rate limiting purposes.

2. Data We Do NOT Collect

• We do not store your source code or diffs after the review is complete.
• We do not access repositories where CodeSentri is not installed.
• We do not collect personal information beyond what GitHub provides through the app installation.
• We do not sell or share your data with third parties for marketing purposes.

3. How We Use Your Data

• Code review — Pull request diffs are sent to Anthropic's Claude API to generate review comments. Diffs are not stored after processing.
• Usage tracking — We track review counts per installation to enforce plan limits and prevent abuse.
• Analytics — We use Google Analytics (GA4) on our website to understand traffic and improve our service. We also track anonymized server-side events (installs, reviews, plan changes) via GA4 Measurement Protocol. No source code or diff content is sent to Google.
• Billing — Installation and plan data is stored to manage subscriptions through GitHub Marketplace.

4. Third-Party Services

We use the following third-party services to operate CodeSentri:

• Anthropic (Claude API) — Processes code diffs for AI review. Subject to Anthropic's privacy policy.
• GitHub — Provides repository access and marketplace billing. Subject to GitHub's privacy statement.
• Cloudflare — Hosts our worker infrastructure and database. Subject to Cloudflare's privacy policy.
• Google Analytics — Website analytics. Subject to Google's privacy policy.

5. Data Retention

• Code diffs — Not stored. Processed in memory and discarded after review.
• Review metadata — Installation ID, repository name, PR number, and comment count are retained for usage tracking.
• Installation data — Retained while CodeSentri is installed. Reverted to free tier on uninstall.

6. Data Security

We use industry-standard security measures including:

• HMAC SHA-256 webhook signature verification for all GitHub events.
• Short-lived installation tokens for GitHub API access.
• All data transmitted over HTTPS/TLS.
• Secrets stored as encrypted environment variables, not in source code.

7. Your Rights

You can uninstall CodeSentri at any time from your GitHub settings. This immediately stops all data access. To request deletion of stored metadata, contact us at the email below.

8. Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page with an updated date.

9. Contact

For questions about this privacy policy or your data, contact us at [email protected] or open an issue at github.com/CrashBytes/codesentri.