Privacy Policy

Official Effective Date: February 10, 2026

1. Introduction

At QodeCheck, we provide AI-powered security auditing tools. This Privacy Policy explains how we collect, use, and protect information when you use our services and our integrations (Slack, GitHub, GitLab).

2. Data Collection

We only collect data necessary to provide our security services:

Account Information Email address and organization names via OAuth.
Integrations We store OAuth tokens and Webhook URLs (encrypted) to send alerts and notifications.
Source Code To provide the Service, we temporarily reproduce a copy of your repository on our secure infrastructure solely for the purpose of performing static code analysis and security detection. Such copies are retained for a maximum of 24 hours and then irrecoverably deleted. We do not use your source code to train AI models.

3. Use of Data

We use the collected information to:

Perform security scans

Send Slack alerts

Post PR comments

Generate audit reports

4. Third-Party Services

QodeCheck interacts with:

Slack: To post scan notifications via Bot API.
GitHub / GitLab: To access repositories and post review comments.

We comply with the developer terms of each of these platforms.

5. Security

We implement industry-leading security measures, including authenticated encryption (Libsodium) for integration tokens and TLS 1.3 for all data transfers.

7. Contact

For any questions regarding your data, reach out to our legal team:

[email protected]