Privacy Policy

1. Introduction

WarpFix ("we," "us," or "our") operates the warpfix.org website and the WarpFix platform (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By accessing or using the Service, you agree to this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access the Service.

2. Information We Collect

2.1 Personal Data

When you register for an account, we may collect personally identifiable information, including but not limited to:

• Name and email address (via GitHub OAuth)
• GitHub username and profile information
• Repository metadata (names, URLs, branch information)
• CI/CD pipeline logs and build outputs
• Payment information (processed securely via third-party payment processors)

2.2 Usage Data

We automatically collect certain information when you visit, use, or navigate the Service, including:

• IP address and browser type
• Device information and operating system
• Pages visited and time spent on pages
• Referring website addresses
• Feature usage patterns and interaction data

2.3 Code Data

To provide our CI repair and code review services, we access and process source code, build logs, test outputs, and related artifacts from your connected repositories. This data is processed in accordance with our data retention policies and is never shared with third parties for commercial purposes.

3. How We Use Your Information

We use the information we collect for various purposes, including to:

• Provide, operate, and maintain the Service
• Detect CI failures, generate patches, and create pull requests on your behalf
• Perform automated code reviews and security scanning
• Improve and personalize the Service through fingerprint learning
• Process transactions and manage subscriptions
• Send you technical notices, updates, and support messages
• Respond to your comments, questions, and customer service requests
• Monitor and analyze usage trends to improve user experience
• Detect, prevent, and address technical issues and security threats
• Comply with legal obligations

4. Data Sharing and Disclosure

We do not sell your personal information. We may share your information in the following situations:

• Service Providers: Third-party vendors who perform services on our behalf (e.g., hosting, analytics, payment processing)
• GitHub Integration: To create pull requests and interact with your repositories as authorized by you
• Legal Requirements: When required by law, court order, or governmental regulation
• Business Transfers: In connection with any merger, sale of company assets, or acquisition
• With Your Consent: For any other purpose with your explicit consent

5. Data Retention

We retain your personal data only for as long as necessary for the purposes set out in this Privacy Policy. We will retain and use your data to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our policies. CI logs and code artifacts are retained for 90 days after processing, unless you request earlier deletion. Fingerprint data used for pattern matching is retained for the duration of your active subscription.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including encryption in transit (TLS 1.3) and at rest (AES-256), access controls, regular security audits, and secure development practices. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

7. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• Access: Request a copy of the personal data we hold about you
• Rectification: Request correction of inaccurate personal data
• Erasure: Request deletion of your personal data ("right to be forgotten")
• Portability: Request transfer of your data in a machine-readable format
• Restriction: Request restriction of processing of your personal data
• Objection: Object to processing of your personal data
• Withdraw Consent: Withdraw consent at any time where we relied on consent to process your data

To exercise any of these rights, please contact us at support@warpfix.org.

8. Cookies and Tracking

We use cookies and similar tracking technologies to track activity on our Service and hold certain information. For detailed information about our use of cookies, please see our Cookie Policy.

9. Third-Party Services

Our Service may contain links to third-party websites, services, or applications (e.g., GitHub, payment processors). We are not responsible for the privacy practices of these third parties. We encourage you to read the privacy policies of any third-party services you access.

10. Children's Privacy

Our Service is not directed to individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete that information.

11. International Data Transfers

Your information may be transferred to and processed in countries other than the country in which you reside. These countries may have data protection laws that are different from the laws of your country. We take appropriate safeguards to ensure that your personal data remains protected in accordance with this Privacy Policy.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. You are advised to review this Privacy Policy periodically for any changes.