Quorum
Sign inInstall

Privacy Policy

Last updated: 2026-05-07

1. What we collect

  • Account data — your email, name, GitHub user/org you authenticated with.
  • Repository data — for repos you authorize, we read pull-request diffs, commit messages, and PR metadata so we can review them.
  • Review output — findings, summaries, and verdicts produced by AI reviewers.
  • Usage data — pageviews, feature interactions, error events. Tagged with app_name = Quorum in our analytics.
  • Billing data — handled by Stripe; we never store full card numbers.

2. What we do NOT do

  • We do not train AI models on your code.
  • We do not sell your data.
  • We do not share your code with third parties beyond the AI providers required to produce a review.

3. AI providers

Pull-request diffs are sent to AI providers (e.g. OpenRouter, Anthropic, OpenAI) to generate reviews. These providers process the data per their own policies. Where supported, we send requests with zero-data-retention flags. You can configure which models run via the agents page, or bring your own API key.

4. How we use your data

To operate the Service: authenticate you, run reviews, post results back to GitHub, bill you, support you, investigate abuse, and improve the product. Aggregated usage data may be used to understand product performance — never linked to your code.

5. Sharing

We share data only with: (a) infrastructure providers strictly necessary to run the Service (Vercel, Supabase, Inngest, OpenRouter, PostHog, Stripe); (b) authorities when legally required.

6. Retention

Review runs and findings are retained while your account is active. We delete account data within 30 days of account deletion, except where law requires longer retention (e.g. billing records).

7. Security

Data in transit is encrypted via TLS. API keys you provide are encrypted at rest. We follow least-privilege access controls and audit administrative actions. No system is perfectly secure — report concerns to hello@hibernyte.com.

8. Your rights

Depending on your jurisdiction (GDPR, CCPA, etc.), you may have rights to access, correct, export, or delete your data. Email hello@hibernyte.com to exercise them.

9. Cookies

We use cookies for authentication (Supabase session) and analytics (PostHog). No third-party advertising trackers.

10. Changes

We'll post material changes on this page and notify you in-app or by email.

11. Contact

hello@hibernyte.com

See also our Terms of Service.