Privacy Policy

Your privacy is fundamental to how we build our services. Here's everything you need to know, explained in plain language.

Last updated: July 4, 2025

The essentials

  • We never sell your data. Ever.
  • We collect only what's necessary to run our services
  • Your applications and data remain yours
  • All data is stored in European data centers
  • You can request data deletion at any time

What we collect

Account information

When you sign up, we collect:

  • • Your name and email address
  • • Password (encrypted with bcrypt)
  • • Company information (if applicable)
  • • Billing information (processed by Stripe)

Application data

To provide our services, we store:

  • • Application configurations and environment variables
  • • Deployment logs and build artifacts
  • • Custom domains and SSL certificates
  • • Repository connection tokens (encrypted)

Usage data

We automatically collect:

  • • Resource usage (CPU, RAM, storage)
  • • API request logs
  • • Error logs for debugging
  • • Basic analytics (page views, feature usage)

How we use your data

To provide services

  • • Deploy and manage your applications
  • • Process payments and billing
  • • Send service notifications
  • • Provide customer support

To improve our platform

  • • Analyze usage patterns
  • • Debug and fix issues
  • • Develop new features
  • • Prevent abuse and fraud

Who we share with

We never sell, rent, or share your personal data with third parties for their marketing purposes.

We only share data with:

Service providers

Stripe for payments, Scaleway for infrastructure, GitHub/GitLab/Bitbucket for repository access

Legal requirements

When required by law or to protect our rights

With your consent

When you explicitly authorize us to share

Data security

Technical measures

  • • Encryption at rest and in transit
  • • Regular security audits
  • • Isolated infrastructure
  • • Access controls and monitoring

Operational measures

  • • Limited access to data
  • • Employee security training
  • • Incident response procedures
  • • Regular backups

Your rights

Under GDPR, you have the right to:

Access your data

Request a copy of all data we have about you

Correct your data

Update or fix any incorrect information

Delete your data

Request complete deletion of your account and data

Export your data

Receive your data in a portable format

To exercise any of these rights, contact us at [email protected]

Cookies

We use only essential cookies required for the service to function:

  • session Maintains your login session
  • csrf_token Protects against cross-site request forgery
  • remember_me Optional - keeps you logged in

We don't use tracking cookies or third-party analytics.

Data retention

Active accounts

We keep your data as long as your account is active

After deletion

Account data is deleted within 30 days. Some logs may be retained for up to 90 days for security purposes.

Backups

Backup data is purged within 90 days

Changes to this policy

We may update this policy occasionally. When we make significant changes:

  • • We'll notify you by email
  • • We'll post a notice in your dashboard
  • • We'll update the "Last updated" date

Continued use of our services after changes means you accept the updated policy.