Privacy Policy

Last Updated: October 13, 2025

Introduction

This Privacy Policy describes how we ("Company," "we," "us," or "our") collect, use, and share information when you use our GitHub Actions analytics service (the "Service").

Information We Collect

Information You Provide

  • Account Information: Email address, name, and GitHub account details when you sign up
  • Payment Information: Processed securely through Stripe (we do not store credit card details)
  • Support Communications: Any information you provide when contacting support

Information We Collect Automatically

  • GitHub Data: Workflow runs, job data, repository information from GitHub Actions via OAuth and webhooks
  • Usage Data: How you interact with the Service, features used, pages visited
  • Technical Data: IP address, browser type, device information, timestamps
  • Cookies: We use cookies to maintain your session and improve the Service

Information from Third Parties

  • GitHub: Repository data, workflow runs, and account information via GitHub OAuth
  • Stripe: Payment status and billing information

How We Use Your Information

We use the collected information to:

  • Provide, maintain, and improve the Service
  • Process your transactions and send related information
  • Monitor and analyze workflow performance and trends
  • Send administrative information, updates, and security alerts
  • Respond to your requests and provide customer support
  • Detect, prevent, and address technical issues or fraud
  • Comply with legal obligations

Data Sharing and Disclosure

We do not sell your personal information. We may share information with:

Service Providers

  • GitHub: To access your workflow data via their API
  • Stripe: To process payments
  • Google Cloud Platform: Where our infrastructure is hosted
  • Email Service Providers: To send transactional emails

Legal Requirements

We may disclose information if required by law, court order, or to:

  • Comply with legal process
  • Protect our rights, property, or safety
  • Prevent fraud or security issues

Business Transfers

If we are involved in a merger, acquisition, or sale, your information may be transferred as part of that transaction.

Data Storage and Security

  • Location: Data is stored on Google Cloud Platform servers
  • Retention: We retain your data while your account is active and for up to 90 days after deletion (unless longer retention is required by law)
  • Security: We implement industry-standard security measures including encryption in transit (TLS) and at rest
  • Backfill Data: Historical workflow data is retained according to your subscription tier (30-365 days)

Your Rights and Choices

Access and Control

  • Account Settings: Update your profile and preferences
  • Data Export: Request a copy of your data (Pro and Enterprise plans include self-service export)
  • Account Deletion: Delete your account at any time (data deleted within 30 days)

Marketing Communications

You can opt out of marketing emails via the unsubscribe link. We will still send transactional emails related to the Service.

Cookies

You can control cookies through your browser settings, though this may affect Service functionality.

Data Protection Rights (GDPR)

If you are in the European Economic Area, you have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Object to processing of your data
  • Request data portability
  • Withdraw consent

To exercise these rights, contact us at hello@octolense.com

California Privacy Rights (CCPA)

California residents have the right to:

  • Know what personal information is collected
  • Know if personal information is sold or disclosed
  • Opt-out of the sale of personal information (we do not sell data)
  • Request deletion of personal information
  • Not be discriminated against for exercising these rights

Children's Privacy

The Service is not intended for users under 13 years old. We do not knowingly collect information from children under 13. If you believe we have collected such information, contact us immediately.

Third-Party Links

The Service may contain links to third-party websites or services (e.g., GitHub). We are not responsible for their privacy practices.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting the new policy on this page
  • Updating the "Last Updated" date
  • Sending an email notification (for significant changes)

Continued use of the Service after changes constitutes acceptance of the updated policy.

International Data Transfers

If you are accessing the Service from outside the United States, your information may be transferred to and processed in the United States or other countries where our service providers operate.

Contact Us

For questions about this Privacy Policy or to exercise your rights, contact us at:

Email: hello@octolense.com
Support: [support URL]

For data protection inquiries (EU users):
Data Protection Officer: hello@octolense.com

Summary of Key Points

What data we collect:

  • GitHub account and repository data
  • Workflow run analytics
  • Email and payment information
  • Usage and technical data

How we use it:

  • Provide the Service
  • Improve features
  • Process payments
  • Send important updates

Your rights:

  • Access your data
  • Delete your account
  • Export your data
  • Opt-out of marketing

We do not:

  • Sell your data
  • Share data except as described above
  • Access your code or repository contents beyond workflow metadata