Privacy Policy

Overview

DevDiplomat is a Chrome extension that helps users improve the tone of GitHub pull request comments using AI.

We respect your privacy and only collect the minimum data required for authentication and functionality.

Information We Collect

When you sign in using GitHub, we may collect:

  • Email address (from GitHub account)
  • GitHub OAuth access token (temporarily used for authentication)

We do not collect:

  • Passwords
  • GitHub repositories and code
  • Any unrelated browsing data

We do not permanently store your PR comments. However, comment text may be temporarily processed to provide rewrite suggestions. This data is not stored after processing.

How We Use Your Information

We use your information strictly to:

  • Authenticate your identity via GitHub OAuth
  • Provide access to the extension features
  • Associate usage with your account (e.g. rate limits or subscriptions, if applicable)

We do not sell, rent, or share your data with third parties.

Data Storage

  • Authentication tokens are stored locally in your browser using chrome.storage.local, and used only for maintaining your session. We do not use these tokens to access your GitHub repositories or data.
  • Email is stored only for identifying your account
  • We do not use GitHub OAuth tokens to read, modify, or access your repositories, code, or pull request data.
  • No sensitive GitHub data is permanently stored unless required for functionality

Third-Party Services

We use:

  • GitHub OAuth (authentication provider)
  • Comment text is sent to our backend API, where it is processed by AI models (including third-party providers such as Together AI) to generate improved versions. This data is used only for generating rewrite suggestions and is not stored after processing.

These services only receive the minimum data necessary to operate the extension.

Data Retention

  • Authentication data is stored until you log out or uninstall the extension
  • You can clear stored data at any time by using the logout function
  • To delete email stored for identifying account, please contact us.

Security

We take reasonable measures to protect your data, including:

  • HTTPS communication for all API requests
  • Secure token-based authentication
  • Limited data collection by design

Your Rights

You may:

  • Request deletion of your data
  • Log out at any time
  • Stop using the extension and request to delete your data in the backend.

Changes to This Policy

We may update this privacy policy from time to time. Updates will be posted at this URL.

Contact

If you have questions, contact:

E-Mail: hello@devdiplomat.digital

© 2026 DevDiplomat