Security & Privacy
Your code stays yours
Security isn’t an afterthought - it’s built into every layer of RepoMind, from authentication to data storage to deletion.
Read-only GitHub OAuth
RepoMind requests the minimum GitHub permissions needed - read-only repository access. We never write to your code, create branches, or modify settings.
No training on your code
Your source code is used strictly for retrieval-augmented generation. It is never used to train, fine-tune, or improve any machine-learning model.
Per-user, per-repo isolation
Every index is scoped to a specific userId, repoId, and branch. Queries are filtered at retrieval time so you only ever see your own data.
Data deletion on disconnect
When you disconnect a repository or revoke access, all associated embeddings and metadata are permanently deleted from our systems.
Retention policy
Indexed data is retained only while a repository is actively connected. Log retention can be configured by the user.
Compliance
We are working toward SOC 2 Type II certification and GDPR compliance. Formal certification will be announced once achieved.
Have security questions? Get in touch