GitDocAI

Privacy Policy

Last updated: 2026-04-28

GitDocAI ("GitDocAI", "we", "us", or "our") provides an AI-powered documentation platform available at gitdoc.ai and related applications (the "Service"). This Privacy Policy explains what personal data we collect, why we collect it, how we use it, and the rights you have over it.

By using the Service you agree to the practices described here. If you do not agree, please do not use the Service.

1. Information we collect

1.1 Information you provide

  • Account data: name, email, password hash, and organization details when you sign up.
  • Content you upload: repositories, files, PDFs, recordings, and any text you submit so the Service can generate documentation.
  • Communications: messages sent via our contact form, email, or support channels.
  • Payment data: when you purchase a plan, billing details are collected and processed by Stripe; we do not store full card numbers.

1.2 Information collected automatically

  • Usage data: pages viewed, clicks, referrers, and other product interactions.
  • Device data: IP address, user agent, operating system, language, screen size, and approximate location derived from IP.
  • Cookies and similar technologies: used to keep you signed in, remember preferences, and measure product performance.

2. Third-party processors

We use a small number of vendors to operate the Service. These act as data processors and only handle data on our behalf:

  • PostHog — product analytics and (where enabled) session replay. Privacy policy.
  • Stripe — payment processing for paid plans and lifetime deals. Privacy policy.
  • Google reCAPTCHA — abuse prevention on forms. Privacy policy.
  • EmailJS — delivery of contact-form submissions to our inbox. Privacy policy.
  • Hosting and infrastructure — used to serve the website and store account and document data.

3. How we use information

  • Provide, operate, and improve the Service.
  • Generate documentation from the content you upload, using AI models.
  • Authenticate you and protect against fraud, abuse, and security incidents.
  • Send transactional messages (account, billing, security) and, with consent, product updates.
  • Measure usage and product performance to improve features and content.
  • Comply with legal obligations and enforce our Terms.

4. Legal bases (EEA / UK)

If you are in the European Economic Area or the United Kingdom, we process personal data on the following legal bases: performance of a contract (to deliver the Service), legitimate interests (to secure, improve, and promote the Service in a proportionate way), consent (for non-essential cookies and marketing emails), and legal obligation (where required by law).

5. Sharing of information

We do not sell personal data. We share information only with the processors listed in section 2, with professional advisors when necessary, with authorities when legally required, and in connection with a corporate transaction (merger, sale, or asset transfer), in which case affected users will be notified.

6. International transfers

Some of our processors are located outside your country of residence. Where required, transfers are protected by appropriate safeguards such as Standard Contractual Clauses or equivalent mechanisms.

7. Data retention

We retain personal data for as long as your account is active and as needed to provide the Service. After account deletion we remove or anonymize personal data within a reasonable period, except where retention is required for legal, accounting, or fraud-prevention purposes.

8. Your rights

Depending on your jurisdiction you may have the right to:

  • Access the personal data we hold about you.
  • Request correction or deletion.
  • Object to or restrict certain processing.
  • Receive a portable copy of your data.
  • Withdraw consent at any time, without affecting prior processing.
  • Lodge a complaint with your local data protection authority.

To exercise any of these rights, contact us at the address in section 12.

9. Cookies and tracking

We use first-party cookies and similar technologies to keep you signed in and to measure product performance via PostHog. You can control cookies through your browser settings. Where required by law we will request your consent before enabling non-essential tracking.

10. Children

The Service is not directed to children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, contact us and we will delete it.

11. Security

We use industry-standard administrative, technical, and physical safeguards to protect personal data, including encryption in transit, access controls, and monitoring. No method of transmission or storage is 100% secure.

12. Contact

Questions, requests, or complaints about this policy can be sent to [email protected] or via our contact form.

13. Changes to this policy

We may update this policy from time to time. The "Last updated" date above reflects the most recent revision. Material changes will be communicated through the Service or by email where appropriate.