Legal
Privacy Policy
Last updated: May 1, 2026
1. Information we collect
We collect information you provide directly: name, email, billing details, and app deployment configurations. We also collect usage data automatically, including app resource metrics (CPU, memory, storage), deploy logs, and anonymized interaction data with our dashboard and API. We do not access, read, or store the content of your deployed applications or their databases. Your app data remains yours.
2. How we use your information
We use your information to: provide and improve our hosting services, process payments and route revenue shares to open-source maintainers, communicate service updates and security alerts, detect and prevent abuse or unauthorized access, and comply with legal obligations. We never sell your personal data to third parties. We never use your app data for advertising or product development outside of the CodeHost platform.
3. Data sharing
We share data only with: Stripe (payment processing — card details never touch our servers), our cloud infrastructure providers (to run your apps in your selected regions), and law enforcement when legally required. Maintainer payouts are processed through our payment partner. Maintainers receive your app's name and the funding amount — no personal information about you is shared with maintainers.
4. Data retention
Account data is retained while your account is active. App deploy logs are retained for 30 days. Backup data is retained per each app's retention policy. Upon account deletion, all data is purged within 30 days except where legal retention is required.
5. Your rights
You may: request a copy of your personal data, request correction or deletion of your data, export all your app configurations and data at any time, opt out of non-essential communications, and lodge a complaint with your local data protection authority. To exercise any of these rights, contact privacy@codehost.app.
6. Security
We employ industry-standard security measures including encryption at rest and in transit, container isolation between apps, regular security audits, and automated vulnerability scanning. While no system is perfectly secure, we invest heavily in protecting your data.
7. International transfers
CodeHost operates globally. Your data may be processed in the region you select for deployment. For EU users, we comply with GDPR and provide Standard Contractual Clauses upon request.
8. Contact
For privacy inquiries: privacy@codehost.app Our Data Protection Officer can be reached at dpo@codehost.app