@@ Legal @@

Privacy Policy

Last updated 
June 12, 2026
Version 
2026.06.1
Applies to 
EU · France · Canada · United States

In plain language

  • No server sees your code. Pyor talks to GitHub directly from your machine using your own credentials. Our backend handles only sign-in, billing, and your team’s seats — it never receives, stores, or proxies your code, diffs, or pull requests. Your source, diffs, and token stay on your machine.
  • The only personal data we process is what running a website and billing Teams requires — your email, account, and payment details (payments are handled by Polar, our merchant of record; we never see your card number).
  • We don’t sell or share your personal data for advertising, and we use no ad trackers.
  • You have real, enforceable rights — access, deletion, correction, portability, opt-out — wherever you live. Email support@pyor.review and we’ll honour them.

1. Who we are

This Privacy Policy explains how Pyor (“Pyor”, “we”, “us”) collects and uses personal data in connection with the Pyor website at pyor.review and the Pyor desktop and web applications (together, the “Services”). For the processing described here, we are the data controller (GDPR) / the organisation accountable for your information (PIPEDA & Québec Law 25) / the business (CCPA/CPRA).

The publisher is an independent individual developer; contact details are below.

  • General privacy contact: support@pyor.review
  • Data Protection Officer (where appointed): Not appointed
  • EU representative (Art. 27 GDPR, where applicable): «EU representative name + address, if controller is outside the EU»
  • Canadian Privacy Officer: reachable at support@pyor.review

2. Our privacy model — what makes Pyor different

Pyor is a client-side product. We run a backend only for sign-in, billing, and managing your team’s seats — it never receives, stores, proxies, or indexes your repositories, pull requests, diffs, or review comments. When you use the app:

  • The app communicates directly with GitHub’s API from your device, using your own GitHub credentials.
  • Your GitHub token is stored locally — in your operating system’s secure keychain on desktop (macOS Keychain, Windows DPAPI, Linux libsecret via the OS), or in your browser’s localStorage on the web build. It is never transmitted to us.
  • Cached PR data and your private, on-device review notes live on your machine. They are not uploaded to us.

As a result, your code and the contents of your reviews are not personal data that we process. Your use of GitHub remains subject to GitHub’s own terms and privacy statement. The rest of this policy concerns the limited personal data we do process to run the website, accounts, and billing.

3. What we process, and why

CategoryExamplesWhy
Website usageOn the marketing site: pages viewed, approximate region, device/browser type — aggregated, and only if you consent to analytics. Measured with PostHog (cookieless) and Google Analytics (first-party _ga cookies).Understand what’s useful and improve the site.
Product usage (signed-in app)Which features you use and when — e.g. opening a PR, submitting a review, merging — tied to your GitHub identity (user ID, login, email). Never your code, diffs, PR text, or comment content. You can turn this off anytime in the app’s Settings → Privacy.See how the product is used so we can improve it.
DiagnosticsWhen something breaks: error messages, stack traces, and your GitHub identity for triage. Tokens, secrets, and request/response bodies (which could contain code) are scrubbed before sending; healthy sessions are never recorded.Find and fix bugs, and keep the app secure and stable.
Account & identityName, email, GitHub login/handle, organisation name (Teams).Create and secure your account; operate Teams workspaces.
BillingBilling email, plan, seat counts, country, VAT/tax ID, and payment status. Payments are processed by Polar, our merchant of record; we never receive card numbers and keep only a Polar customer reference.Take payment for Teams and meet tax/accounting law.
Support & commsEmails you send us, and any optional product-update emails you opt into.Answer you; send things you asked for.
Security & logsMinimal, short-lived server logs for the website (e.g. IP address, timestamps) kept by our hosting provider.Keep the site available and defend against abuse.

We do not collect special-category data, we do not run advertising profiles, and we do not build a profile of you across other websites.

  • Performance of a contract (Art. 6(1)(b)) — creating your account, providing the Services, and billing Teams.
  • Legitimate interests (Art. 6(1)(f)) — securing the site, preventing fraud and abuse, billing and seat management, keeping the app stable through error diagnostics, and understanding how signed-in users use the product to improve it. We balance these against your rights, and you can opt out of product analytics anytime in Settings → Privacy.
  • Consent (Art. 6(1)(a)) — non-essential analytics on the marketing website and any marketing emails. You can withdraw consent at any time.
  • Legal obligation (Art. 6(1)(c)) — keeping tax and accounting records.

5. Cookies, analytics & diagnostics

On the marketing website we use strictly-necessary storage to make the site work, and — only with your consent — privacy-friendly analytics: PostHog (cookieless) and Google Analytics, which sets first-party _ga cookies for aggregate measurement. We set no advertising cookies and don’t sell or share your data. You choose when you first visit, and can change your mind anytime via “Manage cookies” in the footer (withdrawing consent clears the analytics cookies). Full detail is in our Cookie Policy.

In the signed-in app, we use PostHog (hosted in the European Union) for product-usage analytics and Sentry for error diagnostics. These run on our legitimate interest in improving and securing the product, tied to your GitHub identity but never to your code or comment content. Usage analytics can be turned off in Settings → Privacy; diagnostics carry only what we need to fix a fault, with tokens, secrets, and code-bearing payloads scrubbed before sending. Both are listed in our Sub-processors.

6. How we share data

We don’t sell your personal data, and we don’t share it for cross-context behavioural advertising. We disclose data only to:

  • Service providers (sub-processors) who process data on our behalf under contract — payments, hosting, email, and analytics. The current list is at Sub-processors.
  • Legal & safety — where required by law, to enforce our terms, or to protect rights and safety. We require valid legal process and disclose the minimum necessary.
  • Corporate events — if we’re involved in a merger or acquisition, data may transfer under this policy; we’ll notify you of any material change.

Business customers can sign our Data Processing Agreement, which includes the EU Standard Contractual Clauses.

7. International data transfers

We and some sub-processors may process data outside your country, including in the United States. Where we transfer personal data out of the EEA, UK, Switzerland, or Canada, we rely on appropriate safeguards — chiefly the European Commission’s Standard Contractual Clauses (and the UK Addendum), plus a transfer-impact assessment and additional measures where needed. Ask us for a copy of the relevant safeguards at support@pyor.review.

8. How long we keep data

  • Account data — for as long as your account is active, then deleted or anonymised within a reasonable period after closure.
  • Billing & tax records — for the period required by applicable tax and accounting law (commonly up to 6–10 years).
  • Analytics — kept in aggregate; no long-lived per-visitor profiles.
  • Support emails — kept only as long as needed to help you and keep a reasonable record.

9. Security

We keep the data we hold to a minimum and protect it with encryption in transit (TLS), access controls, and reputable infrastructure providers. The strongest control is architectural: your code and token never reach us in the first place. See our Security page, including how to report a vulnerability. No method of transmission or storage is perfectly secure, and we can’t guarantee absolute security.

10. Your rights & choices

Wherever you live, you can reach us at support@pyor.review to exercise the rights below. We don’t charge a fee (absent manifestly unfounded or excessive requests), we may need to verify your identity, and we’ll respond within the time the law allows.

European Economic Area, United Kingdom & Switzerland (GDPR)

You have the right to:

  • access a copy of your personal data;
  • rectify inaccurate data and complete incomplete data;
  • erasure (“right to be forgotten”) in the circumstances the law provides;
  • restrict or object to processing, including processing based on legitimate interests;
  • data portability for data you provided, in a machine-readable format;
  • withdraw consent at any time, without affecting prior processing; and
  • lodge a complaint with a supervisory authority — in France, the CNIL (Commission nationale de l’informatique et des libertés).

Canada (PIPEDA & Québec Law 25)

You may:

  • access the personal information we hold about you and ask how it’s used and disclosed;
  • request correction of inaccurate information;
  • withdraw consent, subject to legal or contractual limits;
  • request portability and, in Québec, de-indexing/“right to cease dissemination” where the law applies; and
  • complain to the Office of the Privacy Commissioner of Canada or, in Québec, the Commission d’accès à l’information.

Our Privacy Officer is reachable at support@pyor.review and oversees compliance, including breach assessment and reporting.

United States — California (CCPA/CPRA) & other states

In the past 12 months we collected the categories described in §3 (identifiers, customer records, commercial/billing information, and internet activity if you consent to analytics). We collect these for the business purposes described above and disclose them only to the service providers in §6.

  • We do not “sell” and do not “share” your personal information as those terms are defined under the CCPA/CPRA, and we have not in the prior 12 months.
  • You can request to know, delete, and correct your personal information, and to limit use of sensitive information (we don’t use sensitive information for inferring characteristics).
  • Because we don’t sell or share, our “Your privacy choices” control is your standing opt-out — there’s nothing further to switch off.
  • We won’t discriminate against you for exercising your rights. You may use an authorized agent, and you may appeal a decision by replying to our response.

Residents of Virginia, Colorado, Connecticut, Utah, Texas, and other states with comprehensive privacy laws have analogous rights to access, delete, correct, and opt out of targeted advertising and sale — which we don’t do. Use the same contact to exercise them.

11. Children

Pyor is a developer tool intended for adults and is not directed to children. We don’t knowingly collect personal data from anyone under 16 (or the age your local law sets). If you believe a child has given us data, contact us and we’ll delete it.

12. Automated decision-making

We don’t make decisions producing legal or similarly significant effects about you based solely on automated processing, and we don’t profile you for advertising.

13. Changes to this policy

We’ll update this policy as our practices or the law evolve, and we’ll change the “Last updated” date above and bump the version. For material changes we’ll give prominent notice (e.g. on the site or by email). Your continued use after an update means you accept the revised policy where the law allows.

14. Contact & complaints

Questions or requests: support@pyor.review. You can always complain to your local supervisory authority, but we’d appreciate the chance to resolve things first.