Legal
Privacy Policy
Effective date: 15 March 2026 · Version 1.0
LGTM Pro (“we”, “our”, or “us”) operates the LGTM Pro GitHub App and the web application at lgtmpro.com. This Privacy Policy explains what personal data we collect, how we use it, who we share it with, and what rights you have over it.
If you have questions or want to exercise your rights, contact us at [email protected].
1.Data we collect
GitHub account data
When you sign in via GitHub OAuth, we receive and store your GitHub username (login), numeric GitHub account ID, account type (user or organisation), display name, email address (if public on GitHub), and avatar URL. This information is necessary to operate your account.
GitHub App installation data
When you install the LGTM Pro GitHub App on a repository, we store the GitHub installation ID, the names and IDs of the repositories the app is installed on, and whether each repository is private. We use this to route pull request webhooks to the correct account.
Pull request metadata
When a pull request is opened in a connected repository, we receive and store the PR title, PR number, the head commit SHA, and the author's GitHub username. This metadata is used to generate the review and display it in your dashboard.
Pull request content sent to AI
The content of the pull request — including the diff, commit messages, and PR description — is transmitted to Anthropic's Claude API to generate the review. This content is not stored by us beyond what appears in the generated review body. See section 4 (Sub-processors) for Anthropic's data handling obligations.
AI-generated review content
We store the review text generated by Claude, the AI model used, and internal metadata (latency, a quality score, a watermark flag). This content may be displayed on your dashboard, on the public review permalink, and — if you opt in — on the LGTM Showcase.
Billing and subscription data
We store your Stripe customer ID, Stripe subscription ID, your current plan name, billing status, and the period end date. We do not store or have access to your payment card details — those are handled entirely by Stripe.
Waitlist and enterprise enquiry data
If you join a waitlist or submit an enterprise enquiry, we store your email address, and any optional details you provide (company name, team size, message). This data is used solely to contact you about the relevant plan.
Usage and rate limit data
We maintain counters to enforce per-account usage quotas. These counters reset monthly and automatically expire. No behavioural tracking or analytics are performed.
Session cookies
We set strictly necessary cookies for authentication. See section 6 (Cookies) for details.
Privacy information for pull request authors
When LGTM Pro reviews a pull request, it processes the PR author's GitHub username and pull request content on behalf of the repository owner. If you are a pull request author (not the account holder), this is our notice to you under GDPR Article 14. The data controller is the repository owner who has installed LGTM Pro. We process your GitHub username and PR content to generate the review, store your username in the PR metadata, and display it if the repository owner enables the “show author” Showcase toggle. The legal basis is the repository owner's contract with us (contract performance / legitimate interest). You may exercise the rights described in Section 7 by contacting us at [email protected].
2.How we use your data
We use your data only for the following purposes, each with its lawful basis under GDPR:
| Purpose | Lawful basis |
|---|---|
| Providing and operating the GitHub App review service | Contract performance |
| Enforcing usage quotas and preventing abuse | Legitimate interest |
| Processing billing and subscriptions via Stripe | Contract performance + legal obligation |
| Displaying your reviews and dashboard | Contract performance |
| Contacting waitlist or enterprise enquiry submissions | Consent |
| Public Showcase display (if you opt in) | Consent |
| Complying with legal obligations and responding to lawful requests | Legal obligation |
3.The Showcase feature
The LGTM Showcase (/showcase) is a public page that displays selected AI-generated reviews. Participation is entirely opt-in and controlled by three granular toggles in your review settings:
- –Show on Showcase: whether the review appears publicly at all.
- –Show author: whether the PR author's GitHub username is shown. Note that the PR author is a different person from the repository owner — enabling this toggle publishes their username publicly.
- –Show repository: whether the repository name is shown.
All toggles default to off. You can change them at any time from your dashboard. When disabled, the review is removed from the public Showcase immediately.
Individual review permalinks (e.g. /reviews/[id]) are accessible to anyone with the link regardless of Showcase opt-in status, as they are designed to be shared. If you want a review to be entirely private, contact us at [email protected].
4.Sub-processors and third-party data sharing
We share your data with the following third-party processors. We do not sell personal data.
Anthropic (Claude API)
Pull request content (diff, PR description, commit messages) is sent to Anthropic to generate AI reviews. Anthropic does not use data submitted via their API to train their models under standard API usage terms. You may review Anthropic's data usage policy at anthropic.com/legal/privacy. Data Processing Agreements and Standard Contractual Clauses are in place for EU data transfers; copies are available on request at [email protected].
Purpose: Core service functionality.
Stripe
Billing and subscription management. Stripe handles all payment card data; we only store identifiers.
Purpose: Subscription billing.
GitHub
OAuth authentication and GitHub App webhooks. GitHub processes data per their own privacy policy.
Purpose: Authentication and PR event delivery.
Vercel
Hosts the Next.js frontend application and processes all web requests.
Purpose: Infrastructure.
Railway
Hosts the backend API and PostgreSQL database.
Purpose: Infrastructure and data storage.
For EU users: transfers of personal data to US-based processors (Anthropic, Stripe, Vercel, Railway) are governed by Standard Contractual Clauses (SCCs) pursuant to GDPR Chapter V. Copies of our Data Processing Agreements with sub-processors are available on request at [email protected].
5.Data retention
6.Cookies
We only set strictly necessary cookies required to operate the authentication flow. We do not use analytics cookies, advertising cookies, or any third-party tracking. Because all cookies are strictly necessary, no consent banner is required under the EU ePrivacy Directive.
| Cookie | Purpose | Duration |
|---|---|---|
| authjs.pkce.code_verifier | PKCE code verifier for GitHub OAuth flow | Session |
| authjs.state | CSRF protection during OAuth flow | Session |
| authjs.session-token | Authenticated session token | Up to 30 days |
7.Your rights
Depending on your location, you have the following rights over your personal data. To exercise any of these rights, email [email protected]. We will respond within 30 calendar days.
Access (GDPR Art. 15 / CCPA)
Request a copy of all personal data we hold about you, including your account data, review history, and any waitlist entries.
Erasure (GDPR Art. 17 / CCPA)
Request deletion of your personal data. Uninstalling the GitHub App triggers cascading deletion of your installation, repositories, pull request metadata, and reviews. Billing identifiers may be retained as required by law.
Portability (GDPR Art. 20)
Request your data in a machine-readable format (JSON). Covers account data, review history, and persona configurations.
Rectification (GDPR Art. 16)
Request correction of inaccurate personal data we hold about you.
Object (GDPR Art. 21)
Object to processing based on legitimate interests. Note that rate limiting and quota enforcement are operationally necessary and cannot be fully removed without impairing the service.
Restriction (GDPR Art. 18)
Request that we restrict processing of your personal data — for example, while an erasure request or accuracy dispute is being resolved. Restricted data is retained but not actively processed.
Withdraw consent
Where processing is based on consent (e.g. Showcase participation, waitlist), you may withdraw consent at any time without affecting the lawfulness of prior processing.
If you are in the EU/EEA and believe we have not handled your data correctly, you have the right to lodge a complaint with your local supervisory authority.
8.Security
We implement appropriate technical and organisational measures to protect your personal data, including encrypted connections (HTTPS), environment-level secrets management, and access-controlled database infrastructure. In the event of a personal data breach, we will notify the relevant supervisory authority within 72 hours and affected users without undue delay where required by GDPR Article 33–34.
9.Children's privacy
LGTM Pro is a developer tool intended for users aged 16 and over. We do not knowingly collect data from children under 16. If you believe a child has provided us with personal data, contact us at [email protected] and we will delete it promptly.
10.Changes to this policy
We may update this Privacy Policy from time to time. Material changes will be communicated via email (if we hold your address) or via an in-app notice at least 14 days before they take effect. The effective date at the top of this page will always reflect the current version. Continued use of LGTM Pro after the effective date constitutes acceptance of the updated policy.