Legal Information

Privacy Policy

At Deploify, we believe that transparency is the foundation of trust. Learn exactly how we collect, use, and protect your data and infrastructure.

Last updated: June 3, 2026

Ask AI for Summary

1. Information We Collect

When you register for and use Deploify, we collect specific information strictly necessary to operate our continuous deployment infrastructure:

Account Information

To create and manage your account, we collect your email address, full name, avatar URL, and securely hashed passwords. We also generate temporary tokens to facilitate email verification and password resets.

OAuth & Git Providers

If you authenticate via GitHub, GitLab, or Bitbucket, we securely store your provider username, unique user ID, and OAuth access/refresh tokens. These are used exclusively to act on your behalf to clone and deploy your designated repositories.

Project & Infrastructure Data

We collect operational data required to deploy your applications. This includes repository URLs, branch names, build commands, and deployment logs. Any environment variables or secrets you provide are heavily encrypted at the application layer before being stored in our database. We immediately discard the plain text values.

2. How We Use Your Info

We use the data we collect solely to provide, maintain, and secure the Deploify platform. This includes:

  • Cloning, building, and deploying your source code to our edge infrastructure.
  • Authenticating your account and maintaining secure, active browser sessions.
  • Communicating important account updates, security alerts, and deployment status notifications.
  • Providing real-time deployment logs and actionable debugging telemetry.
  • Processing your queries through our AI-powered assistant (Deploify AI) to deliver deployment guidance and troubleshooting support.
  • Provisioning and managing cloud databases (PostgreSQL, MySQL, MongoDB, Redis) within the Deploify Storage infrastructure.

3. AI-Powered Services (Gemini Integration)

Deploify integrates Google Gemini to power our AI assistant ("Deploify AI"). Understanding how your data is handled during AI interactions is critical to us:

Data Sent to the AI

When you interact with Deploify AI, your conversation messages (prompts and follow-ups) are transmitted to the Google Gemini API for real-time processing and response generation. The AI assistant is strictly scoped to Deploify-related topics including deployments, build errors, configuration, and platform features.

No Persistent Storage of Conversations

Deploify does not store, log, or persist any AI conversation data on our servers after your browser session ends. Conversations exist only in your browser's memory during the active session and are discarded upon navigating away or closing the page.

Third-Party Data Processing

Google may process your AI conversation data in accordance with its own Gemini API Terms of Service and privacy policies. Deploify never sells, shares, or transfers AI conversation data to any third parties beyond what is strictly necessary for the Gemini API to generate responses.

Model Selection & Rate Limiting

Deploify AI supports multiple Gemini models (Gemini 3.5 Flash, 2.5 Flash, 2.5 Flash Lite, 3.1 Flash Lite). If a selected model reaches its rate limit, the system automatically falls back to the next available model. This fallback mechanism does not involve any additional data collection or storage.

Recommendation: Avoid sharing sensitive credentials, API keys, or personal secrets in AI conversations. While we do not store conversations, exercise caution when providing sensitive information in any AI interaction.

4. Cloud Storage & Database Services

Deploify's Storage feature allows you to provision and manage high-performance databases directly from the dashboard. Here is how we handle your storage data:

Database Provisioning

When you create a database (PostgreSQL, MySQL, MongoDB, or Redis), we collect the database name, engine type, and password you provide. A secure connection URL is generated and stored in an encrypted format. We never store your database password in plain text.

Connection Credentials

Database connection URLs contain authentication credentials and are encrypted at rest within our infrastructure. On the dashboard, connection strings are masked by default and only revealed upon explicit user action to prevent accidental exposure.

Your Data Ownership

Deploify provides the database infrastructure but does not access, read, monitor, or analyze the contents of your provisioned databases. All data stored within your databases remains under your full and exclusive ownership. Upon account deletion, all provisioned databases and their contents are permanently and irreversibly destroyed.

5. Security & Encryption

Protecting your application infrastructure is our highest priority. We implement robust, industry-standard security measures:

Encryption at Rest

All project environment variables, secrets, and database credentials are encrypted in our database using advanced asymmetric cryptography. We never store infrastructure keys or database passwords in plain text.

Strict OAuth Scopes

We request only the minimum necessary permissions required to read your code and configure webhooks. We do not have write access to alter your source code.

AI Data Isolation

AI conversations processed through Google Gemini are transmitted via encrypted channels (HTTPS/TLS). No conversation data is retained on Deploify servers. The AI API key is managed securely on our infrastructure and never exposed to end users.

6. Your Rights & Deletion

You maintain absolute control over your data. Through the Deploify dashboard, you have the fundamental right to:

  • Access and update your personal information and profile avatar at any time.
  • Unlink any connected OAuth providers (GitHub, GitLab), which instantly revokes our access.
  • Delete any or all provisioned databases, which permanently destroys all stored data.
  • Permanently delete your account.Initiating an account deletion triggers a cascading wipe of all associated projects, services, deployments, environment variables, provisioned databases, AI session data, and active sessions from our systems. This action is irreversible.

7. Contact Us

Have questions about your privacy?

If you have any questions, security concerns, or requests regarding this Privacy Policy, AI data processing, storage data practices, or how we handle your data, our dedicated security team is here to help.

Contact Security Team