Last updated: December 2024
What we collect
When you use Vibe Police, we collect:
- Account information — Email, name, and profile data from your OAuth provider (Google, GitHub)
- Code metadata — Commit messages, file paths, author information, and PR details from connected repositories
- Cloud metadata — Resource names, IAM policies, and configuration data from connected cloud accounts
- Usage data — How you interact with our service to improve the product
What we don't collect
- We don't store your source code content
- We don't store your cloud credentials (OAuth tokens are encrypted and scoped)
- We don't sell your data to third parties
How we use your data
We use the data we collect to:
- Provide the Vibe Police service — monitoring, risk analysis, and alerts
- Improve our product and develop new features
- Communicate with you about your account and service updates
Data security
We take security seriously:
- All data is encrypted in transit (TLS) and at rest
- OAuth tokens are stored encrypted with limited scopes
- We use Google Cloud Platform with enterprise-grade security
- Access to production systems is strictly controlled and audited
Your rights
You can:
- Request a copy of your data
- Request deletion of your data
- Disconnect integrations at any time
- Close your account
Contact
Questions about privacy? Email us at privacy@vibepolice.io