Skip to main content

Data & Privacy

Trust and transparency are central to our initiative. Here's how we handle data, what we access, and what we never do.

Our commitments

Read-only guarantee

Every token we request has read-only scope. We never need write, merge, or push access. The token cannot modify any repository, issue, or PR.

Data use

We use public repository metadata — commits, PRs, contributor information, and repository structure — only for aggregate analysis. We do not scrape or store full repository contents.

No selling or sharing

We do not sell raw data to third parties. We do not share identifiable contribution data with advertisers or commercial entities. Aggregated insights may be published in anonymized form for the benefit of the open source community.

Opt-in participation

Participation is entirely voluntary. You control when and how your project participates. You can revoke access at any time by revoking the token in your GitHub settings.

Compliance and transparency

We design our practices to be privacy-respecting and GDPR-conscious. Participation is opt-in. Data is used only for stated purposes. We retain only what is necessary for aggregate analysis. If you have questions about how we handle data, please contact us.