<Vidar/>

Privacy Policy

Last updated: February 2026

1. Introduction

Vidar (“we”, “our”, “us”) operates a code health scanning platform that analyzes GitHub repositories. This Privacy Policy explains how we collect, use, store, and protect your information when you use our Service. By using Vidar, you consent to the data practices described in this policy.

2. Information We Collect

We collect the following types of information:

  • Account Information: When you sign in via GitHub OAuth, we receive your GitHub username, email address, and profile information as authorized by your GitHub account settings.
  • Repository Code: When you initiate a scan, we temporarily clone and analyze your repository code. This is done using read-only access granted through GitHub OAuth.
  • Scan Results: We store the results of code analysis including health scores, findings, and recommendations associated with your account.
  • Usage Data: We collect basic usage information such as pages visited, features used, and scan history to improve the Service.

3. How We Use Your Information

We use the information we collect to:

  • Perform code health scans and generate reports for your repositories
  • Translate technical findings into plain English using AI (Anthropic Claude API)
  • Provide and maintain the Service, including user accounts
  • Send you scan results, health digests, and service-related notifications
  • Improve and optimize the Service

4. Data Retention

Repository code is cloned temporarily during the scan process and deleted immediately after analysis is complete. We do not retain copies of your source code. Scan results (scores, findings, and recommendations) are retained as long as your account is active. Account information is retained until you request deletion.

5. Data Security

We implement industry-standard security measures to protect your information. Repository code is processed in isolated environments and deleted after scanning. All data is transmitted over encrypted connections (HTTPS). However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

6. Third-Party Services

We use the following third-party services to operate Vidar:

  • GitHub: For authentication (OAuth) and repository access
  • Anthropic (Claude API): For translating technical findings into plain English

These services have their own privacy policies. We encourage you to review them. We do not sell your data to third parties.

7. Your Rights

You have the right to:

  • Access the personal data we hold about you, including scan history and results
  • Request correction of inaccurate personal data associated with your account
  • Request deletion of your account and all associated data, including scan results
  • Revoke GitHub OAuth access at any time through your GitHub account settings

To exercise any of these rights, please contact us at legal@vidar.run.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Last updated” date. You are advised to review this Privacy Policy periodically for any changes. Continued use of the Service after changes constitutes acceptance of the revised policy.

9. Contact Information

If you have any questions about this Privacy Policy, please contact us at legal@vidar.run.