Privacy Policy

Last updated: May 20, 2026

1. Information We Collect

Account Information: When you register, we collect your name, email address, and encrypted password. We never store passwords in plain text.

Usage Data: We collect scan results, project metadata, and feature usage to improve our service. We do NOT store your source code permanently — repo clones are deleted immediately after scanning.

Payment Information: Payment processing is handled by Razorpay. We do not store credit card numbers, UPI IDs, or bank details on our servers.

2. How We Use Your Information

  • To provide and maintain the InfraAudit scanning service
  • To process payments and manage subscriptions
  • To send password reset emails and critical service notifications
  • To improve our scanning engine and user experience
  • To respond to support requests

We do NOT sell your data to third parties. We do NOT use your code for training AI models.

3. Data Storage & Security

Your data is stored on AWS infrastructure (EC2, RDS) in secure, encrypted environments. Passwords are hashed using bcrypt. GitHub tokens are stored encrypted. All connections use HTTPS/TLS.

4. Data Retention

Account data is retained as long as your account is active. Scan findings are retained for 12 months. You can request deletion of your account and all associated data at any time by emailing deploypilotai@gmail.com.

5. Third-Party Services

  • AWS: Cloud infrastructure hosting
  • Razorpay: Payment processing
  • GitHub: Repository access (only with your explicit token)
  • Gmail SMTP: Transactional emails

6. GDPR & Your Rights

If you are in the EU/EEA, you have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Export your data in a portable format
  • Object to processing of your data

To exercise these rights, email deploypilotai@gmail.com with your request.

7. Contact

For privacy-related questions: deploypilotai@gmail.com

DeployPilot AI · Hyderabad, India