Privacy Policy

Last updated: April 1, 2026

What we collect

When you use CodeSheriff, we collect: your name and email address (via Clerk authentication), code snippets from changed files in pull requests you scan, scan results and findings, and usage data to improve the service.

What we don't do

We do not clone your entire repository. We do not sell your data to third parties. We do not use your code to train AI models without explicit consent.

Data retention

Scan findings are retained for 90 days by default. You can delete your data at any time from Settings. On account deletion, all associated data is permanently removed within 30 days.

Third-party services

We use Clerk (authentication), Anthropic (AI analysis), Stripe (billing), and Resend (email). Each service processes only the data necessary for its function.

Contact

Privacy questions: hello@thecodesheriff.com