Code Policy

Effective Date: August 2024

1. Code Ownership

At PR Pilot, we recognize that your code is one of your most valuable assets. You retain full ownership of all code generated, processed, or interacted with by PR Pilot. We do not claim any rights, ownership, or licenses to your code. Our role is to assist you, not to take possession of your intellectual property.

2. Code Access and Interaction

2.1 Access to Code

PR Pilot interacts with your codebase only after you have granted us explicit access. This interaction is conducted through Git, where PR Pilot checks out the code from your repository and creates code within the repository as needed. PR Pilot does not execute any scripts, binaries, or any other forms of executable files. Our interaction is limited to reading and writing textual information within your codebase and connected third-party integrations.

2.2 Temporary Code Checkout

Code is checked out temporarily in an isolated environment on our servers specifically for the task at hand. Once the task is completed, the checked-out code is promptly removed from disk. This ensures that your code is only present on our servers for the minimal time necessary to perform the requested operations.

3. Data Security and Storage

3.1 Secure Environments

All interactions with your code are conducted in secure, isolated environments. We utilize state-of-the-art security measures to protect your code during its temporary presence on our servers.

3.2 No Persistent Storage

PR Pilot does not store your code on a persistent basis. After a task is completed, any checked-out code is removed from our systems. This practice ensures that your code remains secure and under your control.

4. Transparency and Auditing

PR Pilot provides detailed logs of all actions taken within your repositories. These logs are accessible to you via the command-line interface (CLI) or on the PR Pilot dashboard. This transparency allows you to audit and review all interactions PR Pilot has with your code, ensuring that you remain fully informed and in control.

5. Compliance with Best Practices

We are committed to adhering to industry best practices for security, privacy, and code management. PR Pilot is designed with these principles in mind to ensure that your code is handled with the highest standards of care and confidentiality.

6. Third-Party Integrations

PR Pilot connects with third-party tools and services using state-of-the-art mechanisms, such as OAuth2, which give you full control over permissions and access rights. You can review and remove these integrations at any time through the PR Pilot dashboard, ensuring that you maintain control over how and when your code is accessed.

7. User Control and Permissions

You have full control over the code that PR Pilot interacts with. You can manage which repositories or files PR Pilot can access, and you can remove any integrations directly from the dashboard. This ensures that you are always in command of your code and its associated data.

8. Incident Response

In the unlikely event of a security incident involving your code, PR Pilot has a robust incident response plan in place. We will promptly investigate any issues, take necessary corrective actions, and communicate with you to ensure transparency and resolution.

9. Policy Updates

We reserve the right to update or modify this Code Policy at any time. Any changes will be effective immediately upon posting. Continued use of PR Pilot following any changes to this policy constitutes your acceptance of those changes.

10. Contact Us

If you have any questions or concerns about this Code Policy, please contact us at support@arcane.engineer.