Privacy Policy - Ridge Sight

Ridge Sight ("the Service," "we," "us," or "our") is operated by CHKDSK Labs. This Privacy Policy describes how we collect, use, store, and protect your information when you use Ridge Sight. By using the Service, you consent to the practices described in this policy.

1. Information We Collect

Account Data

When you sign in with GitHub, we receive and store:

GitHub user ID — your unique numeric identifier on GitHub
Username (login) — your GitHub handle
Display name — your GitHub profile name (if set)
Avatar URL — your GitHub profile picture URL

Authentication Tokens

OAuth access token — used to access GitHub on your behalf; encrypted at rest using AES-256-GCM
Refresh token — used to renew expired access tokens; encrypted at rest

Repository and Pull Request Data

We fetch and temporarily cache pull request metadata from repositories you select:

Repository names, owners, and IDs
Pull request titles, numbers, URLs, authors, labels, and status
Review and CI check status

We do not access, store, or process your source code.

User Preferences and Actions

Selected repositories for tracking
Saved and dismissed pull requests
Shared views and team collaboration settings
Notification preferences (Slack webhook URLs and Pushover API keys are encrypted at rest)
AI model selection and usage preferences

AI Interaction Data

If you opt in to AI-powered insights:

PR metadata (title, description, labels, file change counts) is sent to the selected AI model provider via the Vercel AI Gateway
AI-generated outputs (risk scores, summaries) are cached temporarily
We never send source code, commit diffs, or file contents to AI providers

Payment Data

All payment processing is handled by Stripe. We store only your Stripe customer ID and subscription ID. We never receive, process, or store credit card numbers or banking details.

Usage and Analytics Data

API request metrics — anonymized route-level data (response times, status codes) for reliability monitoring
Usage counters — action counts for rate limiting (no PII)
Vercel Analytics — cookieless, privacy-friendly web analytics
Sentry — error monitoring and performance traces (no PII; disabled unless configured)

2. How We Use Your Information

Authentication and session management — to securely identify you and maintain your login session
Core functionality — to fetch, display, and manage pull requests from your selected repositories
AI insights — to generate optional risk assessments and summaries (opt-in only)
Notifications — to deliver alerts about PR activity via your configured channels (opt-in only)
Billing — to manage your subscription and track metered AI usage
Service improvement — anonymized analytics to improve reliability and performance

3. How We Protect Your Information

Encryption at rest — GitHub access tokens, refresh tokens, Slack webhook URLs, and Pushover API keys are encrypted using AES-256-GCM before storage
Encryption in transit — all data is transmitted over TLS/HTTPS; HSTS preload is enabled
Session security — session tokens are SHA-256 hashed before storage; cookies are httpOnly, secure, and SameSite=Lax
Row-Level Security — PostgreSQL RLS policies ensure users can only access their own data
Parameterized queries — all database queries use parameterized placeholders to prevent SQL injection
Content Security Policy — nonce-based CSP and security headers protect against XSS and other browser-based attacks
Webhook verification — GitHub and Stripe webhooks are verified via HMAC-SHA256 with constant-time comparison
Input validation — all API inputs are validated using Zod schemas

4. Data Sharing and Third Parties

We share data with third-party services only as necessary to provide the Service. We do not sell, rent, or trade your personal information.

Service	Data Shared	Purpose	Transfer Mechanism
GitHub	OAuth tokens, API calls for PR data	Authentication, repository access	EU SCC
Neon (PostgreSQL)	All stored user data (encrypted)	Database hosting	EU SCC + SOC 2
Stripe	Customer ID, subscription status	Payment processing	EU SCC + PCI DSS
Vercel	Application hosting, analytics	Hosting, CDN, serverless compute	EU SCC
AI Providers (via Vercel AI Gateway)	PR metadata (no source code)	AI-powered insights (opt-in)	EU SCC via Gateway
Sentry	Error messages, stack traces, request metadata	Error monitoring (opt-in via env var)	EU SCC + DPA

For a detailed breakdown of each third-party service, see our Third-Party Services page. For our formal data processing terms, including EU Standard Contractual Clauses and sub-processor documentation, see the Data Processing Agreement.

All AI providers operate under a Zero Data Retention (ZDR) policy — your data is not used to train models and is not retained by providers after processing.

5. Data Retention

Data Type	Retention Period
Sessions	Until expiry (7–30 days); cleaned by daily cron
Usage counters	48 hours
Dismissed PRs	30 days (free tier) / 90 days (premium)
API request metrics	90 days
AI insight cache	Temporary (in-memory, cleared on redeploy)
Account data	Until you delete your account or uninstall the app

6. Your Rights

You have the following rights regarding your data:

Access — you can view and download all your stored data via Settings → "Export My Data" in the dashboard
Deletion — you can delete your account from the dashboard (Settings → "Delete Account"), which anonymizes all identifiable data while preserving aggregate metrics
Correction — account data syncs from GitHub; update your GitHub profile to correct it
Portability — the "Export My Data" feature downloads all your data as a machine-readable JSON file (GDPR Art. 20)
Withdraw consent — you can disable AI insights, notifications, or uninstall the app at any time

For EU/EEA Residents (GDPR)

Under the General Data Protection Regulation, you have additional rights including the right to access, rectification, erasure, restriction of processing, data portability, and objection. Our legal basis for processing is:

Contract performance — processing necessary to provide the Service you signed up for
Legitimate interest — anonymized analytics for service reliability
Consent — AI insights and notifications are opt-in features

To exercise your GDPR rights, contact us at the address below.

For California Residents (CCPA)

Under the California Consumer Privacy Act, you have the right to:

Know what personal information we collect and how it is used
Request deletion of your personal information
Opt out of the sale of personal information — we do not sell your data
Non-discrimination for exercising your privacy rights

7. Children's Privacy

The Service is not directed to children under 13 years of age (or the minimum age required in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will promptly delete it.

8. International Data Transfers

Ridge Sight processes data in the United States through US-based hosting providers (Vercel, Neon). For data transferred from the EU/EEA, we rely on EU Standard Contractual Clauses (SCCs) with our sub-processors. See the table in Section 4 for transfer mechanisms by service. Our complete Data Processing Agreement documents SCCs, supplementary measures, and the full sub-processor list.

9. Cookies

Ridge Sight uses a single essential session_id cookie for authentication. This cookie is httpOnly, secure, and SameSite=Lax. We do not use tracking cookies, advertising cookies, or third-party cookies. Vercel Analytics is cookieless.

10. Changes to This Policy

We may update this Privacy Policy to reflect changes in our practices or applicable laws. Material changes will be communicated through the Service. The "Last updated" date at the top of this page reflects the most recent revision. Continued use of the Service after changes constitutes acceptance of the updated policy.

11. Contact Information

For questions about this Privacy Policy, to exercise your data rights, or to report a privacy concern, please contact us at:

Email: jay@chkdsklabs.io
GitHub: Open an issue on our GitHub repository