Your Rights & Choices
How we protect your data, what you can control, and how to exercise your privacy rights.
At .git, transparency and user control are foundational to our platform. Whether you're an individual developer, a team lead, or an enterprise administrator, you retain meaningful control over your personal data, repository metadata, deployment logs, and usage information. This page outlines your legal rights, how they apply to our services, and exactly how you can exercise them.
Our commitment aligns with major global privacy frameworks, including the GDPR (EU/UK), CCPA/CPRA (California), LGPD (Brazil), and other applicable data protection regulations.
🛡️ Your Core Data Rights
Right to Access
Request a complete copy of all personal data we hold about you, including profile information, account settings, team memberships, and audit logs.
Right to Rectification
Update or correct inaccurate or incomplete personal information directly through your account dashboard or by submitting a verification request.
Right to Erasure
Request deletion of your account and associated data. We will remove all personally identifiable information, retaining only what's legally required for billing, security, or compliance.
Right to Data Portability
Export your configuration, settings, and non-restricted data in a machine-readable format (JSON/CSV) for use with other platforms.
Right to Opt-Out
Choose not to have your usage data shared with third-party analytics partners or used for product improvement research. Disable optional telemetry anytime.
Right to Restrict Processing
Limit how we use your data while a request is under review or if you dispute the accuracy of certain records.
⚙️ How to Exercise Your Rights
Most rights can be exercised instantly via Settings > Privacy & Data. You can export data, adjust sharing preferences, or delete your account without submitting a ticket.
For complex requests (e.g., team-wide data exports, legal compliance, or erasure of historical logs), use our Data Subject Request Form. We verify identity to protect your account.
We acknowledge receipt within 48 hours and resolve valid requests within 30 days, as required by law. Extensions may apply for exceptionally complex cases.
🌍 Applicable Legal Frameworks
Our data practices are designed to comply with multiple jurisdictions. Your specific rights may vary based on your location:
- European Economic Area / UK (GDPR/UK GDPR): Full access, rectification, erasure, portability, objection, and restriction rights apply. Data is processed under Art. 6(1)(b) and Art. 6(1)(f).
- California (CCPA/CPRA): Right to know, delete, correct, opt-out of sale/sharing, and non-discrimination. We do not sell personal information as defined by the statute.
- Brazil (LGPD): Alignment with Brazilian data protection principles, including purpose limitation, data minimization, and user consent where required.
- Other Regions: We follow industry-standard privacy-by-design practices and will comply with local requests where legally binding.
❓ Frequently Asked Questions
If you are the sole owner and no team members or integrations depend on it, yes. If repositories are shared or part of an organization account, data may be retained per organizational retention policies or legal obligations. You can transfer ownership before deletion.
Technical logs required for security, abuse prevention, or legal compliance are retained for up to 18 months in an anonymized state. No personally identifiable information is kept after the deletion window closes.
You can disable optional analytics, usage telemetry, and marketing communications. However, minimal operational data (authentication, deployment status, billing) is required to maintain the service and cannot be fully disabled.
For dashboard requests, your authenticated session serves as verification. For email/form requests, we may require additional confirmation (e.g., account email match, 2FA code, or last 4 digits of a payment method) to prevent unauthorized access.
Need help with your data rights?
Our Data Protection Officer and privacy team are available to assist with complex requests, organizational compliance, or questions about how we handle your information.