Security & Compliance

Built with security and privacy at the core

Security Features

Enterprise-grade security for your release process

SOC 2 Compliant

On path to SOC 2 Type II certification with regular security audits

Encrypted at Rest & in Transit

All data encrypted using industry-standard AES-256 and TLS 1.3

Metadata Only

We never store your source code—only PR/issue metadata from GitHub

Audit Logs

Complete audit trail of all actions for compliance and security

Data Privacy

What we collect

Only PR/issue metadata (titles, descriptions, labels, author names, timestamps). We never access your source code.

How we protect it

All data is encrypted at rest and in transit. Access is strictly controlled with role-based permissions and audit logging.

Data retention

Metadata is retained for 90 days. Analytics aggregates are kept for 13 months. You can delete your data anytime.

Compliance

GDPR compliant with DPA available. SOC 2 Type II in progress.

Questions about security?

Our security team is here to help

Contact Security Team

We value your privacy

We use cookies to enhance your experience. Essential cookies are required for the site to function. You can choose to accept all cookies or manage your preferences.