Legal
Privacy Policy
Last updated: July 13, 2026
fnvibes (“we”) analyzes and reviews source code that you explicitly connect. Your code is the most sensitive thing you can hand us — this page explains exactly what we collect, what touches your code, and what never does. The short version: we take read-only access to only the repositories you pick, we never store full copies of your code, and we never sell data. See also Security & trust.
What we collect
Account data.When you sign in with GitHub we receive your GitHub username, display name, email address, and avatar. We don't see or store your GitHub password; there are no fnvibes passwords at all.
Repository access. Repositories are accessed through a GitHub App installation that you control, scoped read-only to the repositories you select. You can revoke it at any time from your GitHub settings, which cuts our access immediately.
Analysis data. To compute your fnScore we download a temporary copy of the repository, analyze it, and delete the copy when the run finishes. We store the results — scores, findings, and file statistics — but not the codebase itself.
Review data. When you request a human review, your reviewer reads your code through our portal with the same read-only access. Comments, ratings, notes, and threads created during the review are stored so you can come back to them.
Payments.Payments are processed by Stripe. Your card details go directly to Stripe and never touch our servers; we store only the payment status, amount, and Stripe's reference id.
Usage analytics. We use privacy-respecting, cookie-less page analytics (aggregate page views, referrers, countries). We do not run advertising trackers.
How your code is processed
During analysis, selected files are also evaluated by an AI model (Anthropic's Claude, via API) to judge things a scanner can't — architecture, product coherence, copy quality. These excerpts are sent for processing only and are not used to train models.
During a human review, your assigned reviewer browses your code in the portal. Reviewers are bound by confidentiality obligations to us and receive access only to repositories attached to reviews they claim.
Emails
We send transactional email only — review delivered, quote received, payment confirmed, refunds. No marketing lists, no newsletters you didn't ask for.
Your choices
Revoke repository access any time via GitHub → Settings → Applications. To delete your account and its stored data (analyses, reviews, comments), email privacy@fnvibes.com — we honor deletion requests within 30 days. You can request an export of your data the same way.
Data sharing
We share data only with the processors named above (GitHub, Stripe, Anthropic, our hosting and email providers) and only to run the service. We never sell personal data or code, and we never share your code with anyone but your assigned reviewer.
Contact
Questions about this policy: privacy@fnvibes.com. If we change this policy materially, we'll note it here with a new date.