Privacy Policy

Introduction

Deepscope, Inc. (“Deepscope,” “we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform and services.

1. Metadata Only

We collect and process metadata from your integrated services (GitHub, Slack) including:

• Pull request titles, timestamps, and status changes
• Commit metadata (author, timestamp, branch name)
• Issue and ticket identifiers and timestamps
• Slack channel activity patterns (no message content)

Important: We do not store source code, message content, or proprietary business logic unless you explicitly opt-in to code analysis features.

2. Account Information

• Email address
• Name and organization details
• OAuth tokens (encrypted at rest)
• Billing information (processed via Stripe)

3. Usage Data

• Device and browser information
• IP address and location (city/country level)
• Platform interaction logs

• Provide AI-powered engineering insights and workflow analytics
• Generate reports, dashboards, and Slack summaries tailored to your team
• Improve our machine learning models and platform features
• Send service updates and security notifications
• Comply with legal obligations and enforce our Terms of Service

• Raw metadata: Auto-deleted after 90 days
• Derived insights: Retained for 365 days
• Account data: Retained until account deletion + 30 days for audit purposes

You may request immediate data deletion at any time by contacting hello@deepscope.app.

We implement industry-standard security measures:

• End-to-end encryption for data in transit (TLS 1.3)
• AES-256 encryption for data at rest
• OAuth tokens encrypted with separate key management
• Regular security audits and penetration testing
• SOC-2 Type II compliance (in progress)

Third-Party Services

We integrate with the following services with minimal scopes:

• GitHub: Read-only access to repository metadata
• Slack: Read workspace activity patterns; post summaries
• Stripe: Payment processing (we do not store card details)
• Google Analytics: Anonymized usage metrics (opt-out available)

Your Rights (GDPR & CCPA)

Depending on your location, you have the following rights:

• Access: Request a copy of your data
• Correction: Update inaccurate information
• Deletion: Request full account and data deletion
• Portability: Export your data in JSON format
• Opt-out: Disable analytics or marketing communications

To exercise these rights, email hello@deepscope.app.

Children’s Privacy

Deepscope is not intended for individuals under 18 years of age. We do not knowingly collect data from children.

Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be communicated via email 30 days in advance. Continued use of the platform after changes take effect constitutes acceptance.

For privacy-related inquiries or to exercise your rights: