Privacy Policy

Last updated: December 5, 2025

1. Introduction

Uvy ("we," "us," or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you use our design-quality platform.

2. Information We Collect

Account Information

  • Name and email address
  • GitHub account credentials (OAuth tokens)
  • Organization and team information
  • Subscription and billing information

Repository Data

  • Code structure and design system tokens
  • Pull request metadata and diffs
  • Component usage patterns
  • Design system specifications

Technical Information

  • IP address and device information
  • Browser type and version
  • Operating system
  • Usage patterns and analytics

3. How We Use Your Information

We use your information to:

  • Provide PR design reviews and autofix suggestions
  • Extract and enforce your design system
  • Generate pattern suggestions and consistency checks
  • Process payments and manage subscriptions
  • Send service updates and support communications
  • Improve our platform and services
  • Ensure platform security and prevent abuse

4. Information Sharing

We may share your information with:

Service Providers

  • GitHub: Repository access and PR interactions
  • Payment processors: Subscription billing
  • Cloud infrastructure: Secure data storage
  • Analytics services: Anonymous usage analytics

Legal Requirements

We may disclose information when required by law, court order, or to protect our rights, safety, or the rights of others.

5. Data Security

We implement industry-standard security measures including:

  • Encryption of data in transit and at rest
  • Secure OAuth authentication with GitHub
  • Regular security audits and updates
  • Access controls and monitoring
  • Isolated processing environments

6. Your Rights

You have the right to:

  • Access, update, or delete your personal information
  • Revoke GitHub repository access at any time
  • Export your data in a portable format
  • Object to certain uses of your data
  • Request restriction of data processing
  • Lodge complaints with supervisory authorities

To exercise these rights, contact us at [email protected] or through your account settings.

7. Data Retention

We retain your information for:

  • Account data: Until account deletion plus 30 days
  • Repository analysis: As long as integration is active
  • Usage logs: Up to 2 years for analytics and security
  • Billing records: As required by law (typically 7 years)

8. Code and Repository Access

We only access repository data you explicitly grant permission for. We do not:

  • Store your entire codebase
  • Share your code with third parties
  • Use your code to train our models
  • Access repositories beyond your authorization scope

9. Children's Privacy

Our Service is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected such information, please contact us immediately.

10. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or platform notification. Continued use of our Service constitutes acceptance of the updated policy.

11. Contact Us

For privacy-related questions or to exercise your rights, contact us: