← DiffSense

Privacy Policy

Last updated: 2026-04-19

What we collect

• Installation metadata (GitHub account login, installation ID, list of repos)
• Pull-request metadata (repo full name, PR number, title, author, head SHA)
• The risk-analysis comment we posted back to the PR
• Aggregate usage counts for billing

What we DO NOT collect or store

• Your source code or the full contents of commits
• PR file patches after analysis completes — diffs are sent to the LLM provider for the duration of a single analysis, then discarded
• Personally identifying data beyond the GitHub login already visible on the PR

Third parties

We use the following subprocessors:

• GitHub (as the platform the App runs on)
• Our LLM provider (Anthropic, Google, or OpenAI — org-wide setting; see your plan page)
• Stripe / GitHub Marketplace for payment processing

Data retention

Installation and comment metadata is retained while the App is installed. When you uninstall, we delete your installation record within 30 days.

Contact

Email hello@diffsense.app for data requests, deletion, or questions.