// legal
Privacy Policy
CodeClanker ("we", "us", "our") operates codeclanker.com and provides production readiness audits for software projects. This policy explains what personal data we collect, why, and what rights you have over it.
If you have questions, email us at hello@codeclanker.com.
Data we collect
| Data | Why we collect it | Legal basis |
|---|---|---|
| Name, email address | To deliver scan results, correspond about your engagement, and send the audit report | Contract performance |
| Repo URL / project notes | To scope and conduct the audit | Contract performance |
| NDA preference | To prepare the appropriate confidentiality agreement before repo access | Contract performance |
| Consent checkbox value | To record that you agreed to this policy at submission time | Legitimate interest / legal obligation |
We do not collect payment details (no payment is taken on this site), we do not use advertising trackers, and we do not sell data to third parties.
Code repository access
To perform an audit we request read-only access to your repository via a temporary user or token. We ask you to revoke that access once the report is delivered. We do not:
- retain copies of your code after the audit closes
- train any model on your code
- share your code with any third party outside the audit team
Code is stored encrypted at rest during the engagement and deleted within 30 days of delivery.
Third-party services
| Service | What it processes | Their policy |
|---|---|---|
| Formspree | Form submissions (name, email, repo URL, notes). Acts as a data processor on our behalf. | formspree.io/legal/privacy-policy |
| Cloudflare Turnstile | CAPTCHA challenge data to distinguish humans from bots. No personal data is stored by us from this. | cloudflare.com/privacypolicy |
| Google Fonts | Font files served via Google's CDN. Your IP is sent to Google on page load. | policies.google.com/privacy |
| Railway | Hosting infrastructure. Standard server access logs (IP, timestamp, path). | railway.com/legal/privacy |
Data retention
- Form submissions — retained for as long as needed to deliver the service and for a reasonable period afterwards to handle follow-up questions, then deleted.
- Code repositories — deleted within 30 days of audit delivery.
- Server logs — retained for up to 30 days for security and diagnostic purposes.
Your rights
Under GDPR and equivalent laws, you have the right to:
- Access — request a copy of the personal data we hold about you
- Rectification — ask us to correct inaccurate data
- Erasure — ask us to delete your data (subject to legal obligations)
- Portability — receive your data in a machine-readable format
- Objection — object to processing based on legitimate interest
- Withdraw consent — at any time, without affecting prior processing
To exercise any of these rights, email hello@codeclanker.com. We will respond within 30 days.
Cookies
This site does not set first-party cookies. Cloudflare Turnstile may set a short-lived session cookie as part of its bot-detection challenge. No advertising or tracking cookies are used.
International transfers
Formspree and Railway are US-based services. By submitting the form, you acknowledge that your data may be transferred to and processed in the United States. These transfers are governed by standard contractual clauses or equivalent safeguards.
Changes to this policy
We may update this policy as the service evolves. Material changes will be noted at the top of this page with a revised date. Continued use of the service after changes constitutes acceptance.
Contact
Data controller: CodeClanker
Email: hello@codeclanker.com