Privacy Policy

Effective Date: March 3, 2026

This Privacy Policy describes how FixSense ("we", "us", "our") collects, uses, and protects information when you use our Service.

1. Information We Collect

Account Information

• GitHub OAuth: GitHub username, email, and organization membership (used for authentication and installation matching).
• Google OAuth: Email address (used for team member access).

CI Failure Data

When your CI pipeline fails and FixSense is installed, we receive:

• Test names and file paths
• Error messages and stack traces
• CI run metadata (run ID, branch, PR number)

Payment Information

• Billing is processed by Lemon Squeezy. We do not store credit card numbers.
• We receive your Lemon Squeezy customer ID and subscription status.

Usage Data

• Analysis counts and auto-fix usage per installation.
• We do not track individual page views or use third-party analytics.

2. Information We Do NOT Collect

• Source code: We never access, read, or store your repository source code.
• API keys: Your AI provider API keys (for auto-fix) are stored as GitHub Actions secrets in your own repository, not on our servers.
• Full test logs: We only process the failure-relevant portions of CI artifacts.

3. How We Use Your Information

• To provide AI-powered failure analysis and auto-fix suggestions.
• To track usage against your subscription plan limits.
• To send transactional emails (subscription confirmations, usage alerts).
• To improve the Service based on aggregate usage patterns.

4. Data Processing

• AI analysis of test failures is performed using OpenAI's API (gpt-4o-mini model).
• Auto-fix runs entirely within your GitHub Actions runner using your own AI API key.
• We send only test failure data (error messages, stack traces) to the AI provider for analysis — never your source code.

5. Data Storage and Retention

• Data is stored in Supabase (PostgreSQL) hosted in the EU/US.
• Retention periods depend on your plan:
  • Free: 7 days
  • Pro: 60 days
  • Team: 1 year
• After the retention period, analysis data is automatically deleted.

6. Data Sharing

We do not sell, trade, or share your personal information with third parties, except:

• Service providers: Supabase (database), Vercel (hosting), Lemon Squeezy (payments), OpenAI (AI analysis).
• Legal requirements: If required by law, court order, or government request.

7. Security

• All data is transmitted over HTTPS/TLS.
• Database access requires authentication and is restricted to service-level operations.
• GitHub App permissions are limited to the minimum required (read-only for most operations).

8. Your Rights

You have the right to:

• Access: Request a copy of your data.
• Delete: Request deletion of your data by contacting us.
• Cancel: Cancel your subscription at any time.
• Uninstall: Remove the GitHub App from your organization to stop all data collection.

If you are in the EU, you have additional rights under GDPR, including data portability and the right to lodge a complaint with a supervisory authority.

9. Cookies

FixSense uses only essential session cookies for authentication. We do not use tracking cookies or third-party advertising cookies.

10. Children's Privacy

FixSense is not intended for use by individuals under 18 years of age. We do not knowingly collect data from minors.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or through the Service.

12. Contact

For privacy-related questions or data requests, contact us at sg.ace.11@gmail.com.