Privacy Policy
Last updated: March 2026
What we collect
When you sign in with Google, we store your email address, name, and profile picture. This is used to identify your account and sync preferences.
Preferences and settings
Your learned preferences (allow/deny decisions on code assessments) are stored in our database, associated with your account. These contain only metadata about rules and file paths — no source code or file contents.
LLM proxy
When you use the hosted LLM proxy (Free and Pro tiers), your prompts are forwarded to Anthropic for processing. We log token usage counts (input/output tokens, model name, timestamp) for rate limiting and billing. We do not store prompt contents or LLM responses.
What we don't collect
- Source code or file contents
- Repository structure or file paths (beyond what's in preferences)
- API keys (BYOK keys are never sent to our servers)
- Git history or commit data
Data storage
Data is stored in a PostgreSQL database hosted on Neon (AWS US-East). Authentication tokens expire after 90 days.
Data deletion
You can delete your account from the dashboard at any time. This permanently removes all associated data including preferences, settings, and usage logs.
Third parties
- Google — OAuth authentication
- Anthropic — LLM inference (hosted proxy only)
- Neon — Database hosting
- Netlify — Web application hosting
Contact
Questions? Email asa@aspectcode.com.