1. Informations we collect

• Email address – when you join the waitlist or beta program.
• API keys – for GitHub, GitLab, or other platforms you choose to connect. These keys are securely encrypted and stored.
• Repository metadata – the names and IDs of repositories you choose to follow.
• Usage data – anonymous, aggregated usage data to help us improve the product.

We do not collect or store any source code from your repositories.

2. How we use this information

• Repository insights – to track and visualize contributions across your selected repositories.
• Reminders & notifications – to help you stay on top of pending reviews.
• AI explanations – limited diff or metadata may be sent to OpenAI to generate insights (never full content or sensitive data).

3. Third-Party services

• OpenAI – for code summary and contribution explanations.
• Google Forms – to manage waitlist submissions.
• Slack, Microsoft Teams – for notifications and reminders.

Each service operates under its own privacy policy.

4. Your rights

• You can request access, correction, or deletion of your data at any time.
• You can disconnect integrations (e.g. GitHub/GitLab) at any time.
• You can unsubscribe from emails with a single click.

To make a request, contact us at contact@bellugo.io.

5. Data security

• API tokens are stored encrypted, and access to them is tightly controlled.
• No source code or review content is stored unless explicitly needed for a feature — and even then, never without consent.