Privacy Policy

This Privacy Policy explains how Codeit collects, uses, stores, and shares personal data when you use the Codeit mobile application and related services.

By using Codeit, you agree to the data practices described in this Privacy Policy.

Account Data: email address, auth provider identifier, and account metadata provided through your selected sign-in method.

GitHub Connection Data: OAuth authorization state, repository metadata, pull request metadata, and file tree metadata that you explicitly request in the app.

Usage Data: feature usage events, request timing, in-app settings, selected AI mode (Managed or BYOK), model preference, and credit balance state needed to provide and improve the service.

Billing and Ledger Data: wallet balance, top-up events, AI usage charge entries, and related transaction references used to calculate, audit, and display credit activity.

Support Data: help-desk ticket content and metadata you submit in the app.

Technical Data: device-level diagnostics, app version, crash/error logs, and performance telemetry.

To authenticate users, maintain sessions, and secure accounts.

To deliver core product functionality such as repository browsing, diff generation, and AI-assisted workflows.

To calculate and apply Codeit AI credit usage, including provider-cost accounting and service-fee calculations.

To maintain wallet/ledger records and billing traceability for each managed AI request.

To maintain service reliability, prevent abuse, investigate fraud, and support customers.

Managed Route: you select supported OpenAI or Gemini models in-app, and Codeit processes requests on managed credits.

Managed pricing is calculated as underlying provider token cost plus a Codeit service fee (currently 25%). Fee-inclusive pricing is displayed in the app UI.

For managed requests, Codeit stores usage/billing metadata including provider, internal model, token counts, provider cost, charged amount, and request reference to maintain auditable wallet and ledger records.

BYOK Route: you may use your own OpenAI, Claude, or Gemini API key. In BYOK mode, provider charges are handled by your provider account, not Codeit credits.

BYOK API keys are kept on-device in secure app storage and are not stored in Codeit managed billing tables.

For iOS production builds, digital AI credits are intended to be sold via Apple In-App Purchase under applicable App Store policies.

We process data as necessary to perform our contract with you (service delivery), pursue legitimate business interests (security, fraud prevention, product quality), and comply with legal obligations.

Where consent is required by local law, we request and rely on your consent.

We may share data with infrastructure and platform providers that help operate Codeit (for example, authentication, hosting, analytics, and AI model infrastructure).

We do not sell your personal data for third-party advertising.

We may disclose information when required by law, legal process, or to protect rights, safety, and platform integrity.

We retain data for as long as needed to provide the service, comply with legal obligations, resolve disputes, and enforce agreements.

If you delete your account, user-bound operational records are removed with account deletion, while eligible purchase records may be archived for compliance, fraud prevention, tax, and accounting obligations.

Retention periods may vary depending on data category, security needs, and legal requirements.

We use reasonable technical and organizational safeguards, including secure transport, access controls, and operational monitoring.

No method of storage or transmission is completely secure, so absolute security cannot be guaranteed.

Depending on your jurisdiction, you may have rights to access, correct, delete, restrict, or export your personal data, and to object to certain processing.

You may also request account deletion and disconnection of linked integrations.

Codeit is not directed to children under the age required by local law for independent consent. We do not knowingly collect personal data from children where prohibited.

Your data may be processed in countries other than your residence. We apply safeguards appropriate to applicable law for cross-border transfers.

We may update this Privacy Policy periodically. Material changes may be communicated through the app or related service channels.

For privacy requests, contact: support@codeit.app