Privacy Policy

PulseRepo is operated by Topginger Ltd ("we", "us", "our"). This Privacy Policy explains how we collect, use, and protect information when you use PulseRepo at pulserepo.com.

Questions? Reach us at support@pulserepo.com.

Account data — when you sign in with GitHub, we receive your GitHub username, display name, email address, and profile avatar. We store these to identify your account.

Webhook payloads — GitHub sends us event payloads (push, pull request, issue, deployment, etc.) for repositories where you have installed PulseRepo. We process these payloads to generate Telegram notifications and do not store raw payloads beyond what is needed for delivery.

Billing data — if you subscribe to a paid plan, payments are handled entirely by Stripe. We store your Stripe customer ID and subscription status, but never your card details.

Newsletter — if you opt in during sign-up, we add your name and email to our Resend mailing list. You can unsubscribe at any time via the link in any email.

Usage data — we collect basic server logs (IP address, request path, timestamps) for security and troubleshooting. These are not sold or shared with third parties.

• To authenticate you and manage your account
• To route GitHub webhook events to your Telegram chat
• To manage your subscription and process payments via Stripe
• To send you product updates if you have opted in to the newsletter
• To detect abuse and protect the security of the Service
• To comply with legal obligations where required

We do not sell your data. We do not use your data for advertising or share it with third parties for their own marketing purposes.

We use the following sub-processors to operate the Service:

• Supabase — PostgreSQL database hosting (EU region)
• Stripe — payment processing
• Resend — transactional email and newsletter delivery
• Telegram — notification delivery via Bot API
• GitHub — OAuth authentication and webhook source

Each of these services has its own privacy policy governing data they process on our behalf.

We retain your account data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal or financial compliance purposes (e.g. billing records for up to 7 years).

Depending on your location, you may have rights to access, correct, delete, or port your personal data, and to object to or restrict certain processing.

To exercise any of these rights, email us at support@pulserepo.com. We will respond within 30 days.

If you are in the UK or EEA, you also have the right to lodge a complaint with your local data protection authority.

We use industry-standard practices to protect your data: encrypted connections (TLS), server-side session validation on all API routes, and strict scoping of database queries to authenticated users.

No method of transmission over the internet is 100% secure. If you discover a security issue, please disclose it responsibly to support@pulserepo.com.

We use a single session cookie to keep you signed in. We do not use third-party tracking cookies or advertising cookies.

The Service is not directed at children under 16. We do not knowingly collect personal data from anyone under 16. If you believe we have done so in error, contact us and we will delete the data promptly.

We may update this Privacy Policy from time to time. We will notify you of material changes by email or via a notice in the Service before they take effect. The "last updated" date at the top of this page reflects the most recent revision.