Privacy Policy
Effective Date: March 7, 2026 | Last Updated: March 7, 2026
This Privacy Policy describes how Plip ("we," "us," or "our") collects, uses, and handles your information when you use the Plip GitHub App and services provided through plip.io ("Service").
1. Information We Collect
1.1 GitHub Account and Installation Data
When you install the Plip GitHub App, we receive and store:
- Your GitHub account or organization name
- GitHub installation ID
- List of repositories you grant Plip access to
- Your GitHub account type (user or organization)
1.2 Repository Data
When Plip processes an issue, we temporarily access:
- Repository source code (cloned into an ephemeral container)
- Issue titles, descriptions, labels, and comments
- File structure and contents relevant to the reported issue
- Test output and build logs generated during the fix attempt
1.3 Usage Data
We collect data about how the Service is used, including:
- Number of pipeline runs and their status (success/failure)
- Tokens consumed and job duration
- PR URLs created by Plip
- Error messages from failed runs
- Timestamps of activity
1.4 Billing Data
If you subscribe to a paid plan through GitHub Marketplace, payment is handled entirely by GitHub — we do not collect or store your payment information. We receive your plan tier and subscription status from GitHub.
2. How We Use Your Information
We use the information we collect to:
- Operate the Service — process issues, generate fixes, and create pull requests
- Send your code to our AI provider (Anthropic) for analysis and fix generation
- Monitor and enforce usage limits
- Track job history and run status
- Improve the Service's reliability and performance
- Communicate with you about the Service (e.g., through GitHub issue comments)
- Comply with legal obligations
3. Third-Party AI Processing
Important: When Plip processes an issue, your repository code and issue content are sent to Anthropic's Claude API to generate fixes. This means:
- Portions of your source code are transmitted to Anthropic's servers for AI processing
- Anthropic's use of this data is governed by their API Terms of Service and data handling policies
- Anthropic's API does not use your data to train their models (per their commercial API terms as of the date of this policy)
- We send only the code and context necessary to analyze and fix the reported issue
If your code is proprietary, confidential, or subject to regulatory restrictions, you should evaluate whether sending it to a third-party AI provider is acceptable under your policies before installing Plip.
4. Data Retention
| Data Type | Retention |
|---|---|
| Installation records | Retained while installed; deleted upon uninstallation |
| Repository source code | Not retained. Cloned into an ephemeral container destroyed after each job |
| Issue content | Not retained. Used only during job execution |
| Pipeline run metadata | Retained for account history and usage tracking |
| Error messages | Retained for debugging and service improvement |
We do not maintain a persistent copy of your source code. Code exists only in short-lived containers during active job execution.
5. Data Sharing
We do not sell your information. We share data only with:
- Anthropic — Your code and issue content are sent to Anthropic's Claude API for AI processing (see Section 3)
- GitHub — We interact with your repositories through GitHub's API using the permissions you granted
- Infrastructure providers — Our hosting provider (Fly.io) and database/queue services process data as part of running the Service
- Legal compliance — We may disclose information if required by law, legal process, or government request
6. Data Security
We implement reasonable measures to protect your data, including:
- Ephemeral containers destroyed after each job, leaving no persistent copy of your code
- Encrypted connections (TLS) for all data in transit
- Secrets and API keys stored using encrypted secret management
- Scoped GitHub App permissions limited to what the Service requires
However, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.
7. Your Rights and Choices
7.1 Access and Control
You control which repositories Plip can access through your GitHub App installation settings. You can add or remove repository access at any time.
7.2 Uninstallation
You can uninstall the Plip GitHub App at any time through GitHub's settings. Upon uninstallation, we will delete your installation record and cease all access to your repositories. Pipeline run metadata may be retained for a reasonable period for record-keeping.
7.3 Data Deletion Requests
To request deletion of all data associated with your account, contact us at privacy@plip.io. We will process deletion requests within 30 days.
7.4 Rights Under Applicable Law
Depending on your jurisdiction, you may have additional rights regarding your personal data, including the right to access, correct, delete, or port your data. Contact us at privacy@plip.io to exercise these rights.
8. Children's Privacy
The Service is not intended for use by anyone under the age of 13 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect information from children.
9. International Data Transfers
Your data may be processed in Canada, the United States, or other jurisdictions where our infrastructure providers operate. By using the Service, you consent to the transfer of your data to these jurisdictions, which may have different data protection laws than your own.
10. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated through the plip.io website. Continued use of the Service after changes constitutes acceptance of the updated policy.
11. Contact
For questions or concerns about this Privacy Policy or your data:
- Email: privacy@plip.io
- Website: https://plip.io
By installing or using Plip, you acknowledge that you have read and understood this Privacy Policy.