Codeshots

Privacy Policy

Last updated: May 2026

1. Information We Collect

When you use Codeshots, we collect:

  • Account information: Email address, name, and profile picture from your authentication provider (GitHub). OAuth authentication tokens are stored for session management.
  • Usage data: API request logs including timestamps, endpoints accessed, and response times
  • Code snippets: Code submitted for image generation (processed but not permanently stored)

2. How We Use Your Information

We use collected information to:

  • Provide and maintain the service
  • Authenticate your account and manage API access
  • Monitor usage and enforce rate limits
  • Improve the service and fix issues
  • Communicate important updates about the service

3. Data Storage and Security

Your data is stored securely using industry-standard practices. API keys are hashed before storage. OAuth tokens are stored securely alongside account data. Code snippets are processed in-memory and not permanently stored. We use HTTPS for all data transmission. API usage logs and session data are retained for the duration of the account.

4. Data Sharing

We do not sell your personal information. We may share data with:

  • Service providers who assist in operating the service (hosting)
  • Law enforcement when required by law

5. Your Rights

You have the right to:

  • Access your personal data
  • Request deletion of your account and associated data
  • Export your data
  • Revoke API keys at any time

To exercise any of these rights, please contact us at the email address below. If you are located in the European Economic Area, you may also exercise your rights under the General Data Protection Regulation (GDPR), including the right to data portability and the right to lodge a complaint with a supervisory authority.

6. Cookies

We use essential cookies for authentication and session management. We do not use tracking cookies or third-party advertising cookies.

7. Legal Basis (GDPR)

For users in the European Economic Area, we process personal data on the following legal bases:

  • Legitimate interest: Providing and improving the service, enforcing rate limits, and maintaining security
  • Consent: When you create an account through a third-party authentication provider, you consent to the collection and processing of your account information

8. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of significant changes by posting a notice on the service.

9. Contact

For privacy-related questions, please contact us at [email protected].