Privacy Policy

Overview

MAIASS is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our AI-powered Git workflow automation service.

Anonymous Usage Model

MAIASS operates on an anonymous-first principle. Our CLI tool works without requiring personal information, email addresses, or user accounts for basic functionality.

Machine Fingerprinting

• We generate a unique machine fingerprint for usage tracking and quota enforcement
• This fingerprint is based on hardware characteristics and cannot identify you personally
• No personal data, browsing history, or file contents are included in this fingerprint
• The fingerprint is used solely for preventing service abuse and managing usage quotas

Information We Collect

Anonymous CLI Usage

• Machine fingerprint: A non-personal identifier for your device
• Usage metrics: Number of API calls, tokens consumed, and feature usage
• Error logs: Anonymous technical errors for service improvement (no code content)
• Performance data: Response times and service availability metrics

Team Account Users

If you create a team account through our website, we collect:

• Email address: For account access and communication
• Authentication data: Managed through Cloudflare Access
• Subscription information: Billing details and usage history
• Team settings: Preferences and configuration data

How We Use Your Information

• Service delivery: Processing your AI requests and managing quotas
• Abuse prevention: Preventing unauthorized usage and service abuse
• Service improvement: Analyzing usage patterns to enhance our platform
• Support: Troubleshooting issues and providing customer assistance
• Legal compliance: Meeting regulatory requirements and terms enforcement

Data Sharing and Disclosure

We do not sell, trade, or rent your personal information. We may share data only in these cases:

• Service providers: Trusted partners who help operate our service (OpenAI, Cloudflare, Stripe)
• Legal requirements: When required by law or to protect our rights
• Business transfers: In case of merger, acquisition, or asset sale

Third-Party Services

OpenAI

Your commit messages and code analysis requests are processed by OpenAI's API. We do not store your code content, and OpenAI's data usage policies apply to this processing.

Cloudflare

Our infrastructure runs on Cloudflare, which may collect standard web traffic data including IP addresses and request metadata for security and performance purposes.

Stripe

Payment processing is handled by Stripe. We do not store payment card information. Stripe's privacy policy governs the collection and processing of payment data.

Cookies and Local Storage

Essential Cookies Only

MAIASS uses minimal cookies, and only when absolutely necessary:

• Authentication cookies: HTTP-only cookies set by Cloudflare Access for team account login
• Session management: Temporary cookies for maintaining login state
• Security cookies: CSRF protection and secure session handling

Local Storage

We use browser localStorage for non-sensitive preferences:

• Dark mode preference: Your theme choice (light/dark mode)
• Cookie acknowledgment: Whether you've seen our cookie notice

No Tracking or Analytics Cookies

We do not use:

• Google Analytics or similar tracking services
• Advertising or marketing cookies
• Third-party social media cookies
• Behavioral tracking or profiling cookies

Anonymous CLI Usage

Our CLI tool operates completely without cookies. All authentication and quota management is handled through machine fingerprinting, not browser cookies.

Data Security

We implement industry-standard security measures to protect your information:

• Encryption in transit and at rest
• Access controls and authentication
• Regular security audits and monitoring
• Minimal data collection principles

Your Rights

Anonymous Users

Since anonymous CLI usage involves no personal data collection, there is no personal information to access, modify, or delete. Machine fingerprints can be reset by reinstalling the CLI tool.

Team Account Users

You have the right to:

• Access your personal information
• Correct inaccurate data
• Delete your account and associated data
• Export your data
• Withdraw consent for data processing

GDPR Compliance

For users in the European Union, we comply with the General Data Protection Regulation (GDPR):

• Lawful basis: Legitimate interest for anonymous usage, consent for team accounts
• Data minimization: We collect only necessary information
• Purpose limitation: Data is used only for stated purposes
• Storage limitation: Data is retained only as long as necessary
• Individual rights: Full GDPR rights for identifiable data

Children's Privacy

Our service is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information, please contact us.

Data Retention

• Anonymous usage data: Retained for 12 months for service optimization
• Team account data: Retained while account is active plus 90 days
• Legal compliance data: Retained as required by applicable law

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

• Email: [email protected]
• Subject line: Privacy Policy Inquiry