Privacy Policy
Last updated: April 30, 2026
1. Information We Collect
We collect information you provide directly to us, such as your email address and GitHub profile information when you authenticate via Supabase Auth. We also collect metadata about repositories you choose to back up and operational logs required to process backup, replication, and restore jobs.
2. How We Use Information
We use the information to provide, maintain, and improve RepoVault services; to authenticate users; to schedule and execute backups; to replicate snapshots to secondary storage; and to communicate with you about service-related issues.
3. Data Storage and Security
Snapshot artifacts are stored in encrypted object storage (primary and secondary). Database records are protected by standard access controls and encrypted at rest where supported by the infrastructure provider. We do not persist GitHub installation tokens.
4. Third-Party Services
We use Supabase for authentication and primary storage, and DigitalOcean Spaces (or another S3-compatible provider) for secondary replication. These services have their own privacy policies and security practices.
5. Your Rights
You may request deletion of your account and associated data by contacting us. Upon deletion, we remove database records and schedule storage artifacts for removal in accordance with our retention policy.
6. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on this page with an updated effective date.
7. Contact
If you have questions about this Privacy Policy, please contact us through the channels provided on our website.