Privacy Policy

Effective July 10, 2026

What we process

To provide the service, we temporarily process GitHub installation identifiers, repository identifiers, pull request metadata, changed-code diffs, GitHub usernames, generated quiz questions, and submitted answers.

What we log and measure

Application logs do not intentionally contain PR titles, descriptions, diffs, question content, answers, or access tokens. We retain only aggregate daily PR volume and total diff size per installation for abuse prevention and usage limits. Operational errors are logged without request payloads.

Retention

Diffs are held in memory only while generating a quiz and are not intentionally persisted. Queued jobs contain only GitHub identifiers, not PR content. Quiz questions are removed seven days after completion. Expired sessions, completed jobs, and webhook delivery identifiers are removed on a rolling basis. Installation data is deleted when the GitHub App is uninstalled.

Service providers

We use GitHub to receive repository events, the configured AI provider (gemini) to generate and review quizzes, our hosting provider to operate the application, and our PostgreSQL provider to store service state. Changed code is sent to the configured AI provider. Their processing is governed by their terms and privacy commitments.

Security and your choices

GitHub tokens are encrypted at rest. You can limit repository access in GitHub, disable processing in settings, or uninstall the app. Contact contact@dangriff.in for access or deletion requests.

Changes

We may update this policy and will revise the effective date when material changes are made.