Last updated: March 2026
Account data: Email address, name, and avatar when you sign up. If you use GitHub or Google OAuth, we receive your public profile and email.
Repository metadata: Repository names, PR numbers, and file paths for analysis. We do not store your full source code.
Analysis data: Violation results, debt scores, and gate results from PR scans are stored to power the dashboard and trend tracking.
Payment data: Billing is handled by Stripe and PayPal. We do not store credit card numbers or payment details on our servers.
We use your data to: authenticate your account, analyze pull requests, display dashboard metrics, process payments, and send transactional emails (welcome, password reset, billing notifications).
During PR analysis, only the changed files (diffs) are processed in memory. At most 10 function bodies per PR are sent to the AI engine (Anthropic Claude) for analysis. Code snippets processed during scans are deleted within 24 hours. We never store full repository contents.
We do not sell, rent, or share your personal data with third parties for marketing purposes. Data is shared only with: Stripe/PayPal (payments), Anthropic (AI analysis of code snippets), and GitHub/GitLab (status checks and PR comments).
We use JWT tokens stored in browser localStorage for authentication. We do not use third-party tracking cookies.
Account data is retained while your account is active. Analysis results are retained for trend tracking. You can request deletion of your account and all associated data by contacting us.
For privacy inquiries, email privacy@radar.dev.