Privacy Policy

GitTerm provides cloud workspaces for running coding agents. The hosted service is operated by the GitTerm maintainers. You can reach us at [email protected].

• Account data. When you sign up we receive your email address and, if you sign in with GitHub, your GitHub username and avatar. We store a hashed identifier so we can recognize you on return visits.
• Workspace data. The Git repositories, files, and command history inside your workspaces are stored on infrastructure we operate so that we can deliver the service. We treat this content as confidential and only access it when required to operate, secure, or debug the service.
• Billing data. If you subscribe to a paid plan, payment is processed by our payments provider. We receive a customer identifier and subscription status. We do not receive or store your full card details.
• Product analytics. If you consent, we record anonymous events (such as page views and feature clicks) so we can understand how the product is used. See section 4.
• Logs. Our servers automatically log requests (IP address, user agent, timestamp, request path, status code) for security and operational purposes. These logs are retained for a limited period.

• To provide, secure, and operate the GitTerm service.
• To authenticate you and keep your session active across devices.
• To process payments and manage your subscription.
• To communicate service-critical messages (e.g. account, billing, security).
• To improve the product through aggregate, anonymous usage analytics, but only with your consent.
• To comply with legal obligations.

We do not sell your personal data, and we do not run advertising on GitTerm.

We use a small number of cookies. They fall into two categories:

You can change your choice at any time from Settings → Privacy in the dashboard, or by clearing the gitterm_consent cookie.

When enabled, our analytics provider sets cookies and processes pseudonymous usage data on our behalf. We have configured it to:

• only create user profiles for signed-in users,
• not auto-capture form inputs or session recordings,
• only run when you have given consent.

If you reject analytics, we do not initialize the analytics SDK and no analytics events are sent from your browser.

We share data only with vetted processors who help us run GitTerm. These include cloud hosting and compute providers, our database and cache providers, our authentication system, our payments processor, our email provider, and our analytics provider if you consent. Each processor is bound by a data processing agreement and may only use your data to provide services to us.

We may disclose information if required to do so by law, to protect our rights, or to protect the safety of our users.

Account data is retained while your account is active. If you delete your account from Settings → Account, we delete your account record, your workspaces, and associated metadata within 30 days, except where retention is required for legal, accounting, or fraud-prevention purposes. Server logs are retained for a limited operational period.

Our infrastructure may process data in regions outside your country of residence. Where required, we rely on appropriate safeguards (such as Standard Contractual Clauses) for international transfers.

Depending on where you live (e.g. EEA, UK, California), you may have the right to:

• access the personal data we hold about you,
• correct inaccurate data,
• delete your account and associated data,
• object to or restrict certain processing,
• withdraw consent for analytics at any time,
• port your data to another service,
• lodge a complaint with your local data protection authority.

You can exercise most of these rights directly from the dashboard or by emailing [email protected].

We use industry-standard measures including TLS in transit, encryption at rest where supported, scoped access controls, and regular dependency updates. No system is perfectly secure. Please report suspected vulnerabilities to [email protected].

GitTerm is not directed to children under 13 (or the equivalent age of digital consent in your jurisdiction). We do not knowingly collect personal data from children.

We may update this policy from time to time. Material changes will be communicated by updating the "Last updated" date above and, where appropriate, by a notice in the app.

Questions or requests? Email [email protected].