Privacy
shipstorm reviews pull requests. To do that we clone the repository you connect, review the diff with a panel of code models, and post the findings back to your PR. This is what that means for your data.
Your code
- Repositories are cloned ephemerally to a sandboxed worktree, reviewed, then deleted.
- Reviews run on US-based infrastructure.
- Source is sent to model providers under enterprise agreements — not retained by them, never used to train their models.
- We store findings and review metadata; we do not retain your source.
Account data
When you sign in we store the minimum needed to operate your account (organization, members, plan). Authentication is handled by our identity provider.
Contact
Questions about privacy? Email hello@shipstorm.dev.
This is a pre-launch draft, not the final legal text. The reviewed Privacy Policy lands before the product is generally available.