Back to Home

Privacy Policy

Last updated: December 21, 2025

No Code Storage

We never store your source code

Analysis Only

Code is analyzed in-memory

Data Deletion

Delete your data anytime

1. Introduction

KyberCheck ("we", "our", or "the Service") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and protect your information when you use our quantum vulnerability scanning platform.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Email address
  • Name (optional)
  • Organization name
  • Authentication data (managed by Clerk)

2.2 Repository Metadata

When you connect repositories, we collect:

  • Repository names and URLs
  • Branch names
  • Commit hashes and messages
  • File paths (not content)
  • Primary programming language

2.3 Scan Results

After scanning, we store:

  • Vulnerability locations (file path, line numbers)
  • Vulnerability types and severity levels
  • Code snippets around vulnerabilities (for context)
  • Scan timestamps and statistics

🔒 What We Do NOT Store

We do NOT store your complete source code. Your code is analyzed in-memory during scanning and is never persisted to disk or databases. Only vulnerability metadata and small contextual snippets are retained.

3. How We Use Your Information

We use collected information to:

  • Perform vulnerability scans and generate reports
  • Display scan history and trends in your dashboard
  • Send scan notifications and alerts (with your permission)
  • Process payments and manage subscriptions
  • Improve our scanning algorithms and service quality
  • Comply with legal obligations

4. Third-Party Services

We use the following third-party services:

4.1 Clerk (Authentication)

Handles user authentication, account management, and session management. See Clerk's Privacy Policy.

4.2 Stripe (Payments)

Processes payments and manages subscriptions. We do not store credit card numbers. See Stripe's Privacy Policy.

4.3 GitHub (Integration)

Accesses repositories you authorize through GitHub App installation. We request minimal permissions needed for scanning. See GitHub's Privacy Statement.

5. Data Security

We implement security measures including:

  • Encryption in transit (TLS 1.3) and at rest
  • Secure database hosting with access controls
  • Regular security audits and vulnerability assessments
  • Limited employee access to user data
  • Secure handling of GitHub access tokens

6. Data Retention

Scan results are retained according to your subscription plan:

  • Free plan: Most recent scan only
  • Startup plan: 90 days of scan history
  • Business/Enterprise: Unlimited retention

Account information is retained until you delete your account.

7. Your Rights

You have the right to:

  • Access: Request a copy of your personal data
  • Correction: Update inaccurate information
  • Deletion: Delete your account and associated data
  • Portability: Export your scan data in JSON format
  • Objection: Opt out of marketing communications

To exercise these rights, contact us at hello@kybercheck.com.

8. Cookies and Tracking

We use essential cookies for authentication and session management. We use Vercel Analytics for anonymous usage statistics. We do not use advertising trackers or sell your data.

9. Children's Privacy

The Service is not intended for users under 16 years of age. We do not knowingly collect information from children.

10. Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be communicated via email or through the Service. Continued use after changes constitutes acceptance of the updated policy.

11. Contact Us

For privacy-related questions or concerns, contact us at: