Privacy Policy

Last Updated: December 20, 2025

This Privacy Policy describes how Supercharge Workflows ("we," "our," or "us") collects, uses, and protects your information when you use our Chrome browser extension that enhances GitHub Actions with advanced deployment tracking and workflow insights.

1. Information We Collect

Important: We do NOT access, read, or store your source code. Our extension only accesses deployment and workflow metadata through the GitHub API.

1.1 Account Information (Stored for Licensing)

For subscription management and licensing purposes, we securely store in our database:

GitHub Username: Your GitHub account username
Email Address: Your GitHub email address for account notifications
Organisation Name: If applicable, for team/organisation license management

1.2 Deployment and Workflow Metadata

We temporarily process and cache (not permanently stored):

Deployment Status: Status, environment name, and timestamps of your deployments
Workflow Run Metadata: Run status, job names, and execution times (not workflow file contents)
Commit Metadata: Commit SHA and messages for deployment correlation (not code diffs or file contents)

1.3 Usage and Performance Data

We may collect anonymous usage statistics including:

Extension Usage: Feature usage patterns and performance metrics
Error Logs: Anonymous error reports to improve extension reliability
Performance Metrics: Response times and cache hit rates for optimization

1.4 What We Do NOT Collect

To be clear, we never access, read, or store:

Source Code: We have no access to your repository code, files, or file contents
Code Diffs: We do not see what code changes were made in commits
Secrets or Environment Variables: We cannot access your repository secrets or workflow environment variables
Private Repository Contents: We only see deployment metadata, not your private code
Workflow File Contents: We see run status, not the YAML workflow definitions
Payment Information: All payment processing is handled by GitHub Marketplace

2. How We Use Your Information

2.1 Core Functionality

We use your information to:

Display real-time deployment status and workflow insights
Provide enhanced GitHub Actions interface with deployment tracking
Cache deployment data locally for improved performance
Correlate deployments with workflow runs and commit information

2.2 Performance Optimization

We use data to:

Implement intelligent caching for faster loading times
Optimize API calls to reduce server load and improve responsiveness
Provide predictive data fetching for frequently accessed repositories

2.3 Service Improvement

We use anonymous usage data to:

Identify and fix bugs or performance issues
Understand feature usage patterns for product improvements
Optimize server performance and reliability

3. Data Storage and Security

3.1 Local Storage (Your Browser)

Stored locally in your browser and never sent to our servers:

Session Tokens: Temporary authentication tokens stored in Chrome's session storage (cleared when browser closes)
Cached Deployment Data: Temporarily cached for performance (cleared regularly)
User Preferences: Your extension settings and display preferences

3.2 Server Storage (Our Database)

Stored securely in our database for licensing and account management:

Account Information: GitHub username, email, and organisation name for license verification
Subscription Data: Plan type, seat count, and billing status (payment details are handled by GitHub)
Cached API Responses: Temporarily cached deployment metadata (2-15 minutes, then automatically deleted)

3.3 Security Measures

We implement enterprise-grade security including:

Encryption: All data transmission uses HTTPS/TLS encryption
Access Controls: Strict access controls and authentication requirements
Data Minimization: We collect and store only necessary data
Regular Security Audits: Automated vulnerability scanning and security reviews

4. Data Sharing and Disclosure

4.1 Third-Party Services

We interact with the following third-party services:

GitHub API: We access GitHub's API to retrieve deployment and workflow data
No Other Third Parties: We do not share your data with any other third-party services

4.2 Legal Requirements

We may disclose your information only if:

Required by law or valid legal process
Necessary to protect our rights, property, or safety
Required to investigate potential violations of our terms of service

5. Data Retention

We retain your data for the following periods:

Authentication Data: Until you disconnect the extension or revoke access
Cached Deployment Data: 2-15 minutes on servers, until browser closure locally
Session Data: 30 days of inactivity
Anonymous Analytics: Up to 2 years for trend analysis

6. Your Rights and Choices

6.1 Access and Control

You have the right to:

Access: View what data we have about you
Correction: Request correction of inaccurate data
Deletion: Request deletion of your data
Data Portability: Request a copy of your data

6.2 Managing Your Data

You can:

Revoke Access: Disconnect the extension from your GitHub account at any time
Clear Local Data: Clear browser data to remove locally stored information
Uninstall Extension: Remove the extension to stop all data collection

7. Children's Privacy

Our extension is not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

8. International Data Transfers

Your data may be transferred to and processed in countries other than your country of residence. We ensure that such transfers comply with applicable data protection laws and implement appropriate safeguards to protect your data.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

Posting the updated policy on our website
Updating the "Last Updated" date at the top of this policy
Providing notice through the extension (for significant changes)

10. Contact Information

Questions About This Privacy Policy?

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: privacy@manekar.com.au
Support: support@manekar.com.au
Legal: legal@manekar.com.au

11. Payment Information

Supercharge Workflows is available through the GitHub Marketplace. Important information about payments:

Payment Processing: All payments are processed by GitHub through the GitHub Marketplace. We never receive, store, or process your credit card information.
Billing: Subscription billing is managed entirely by GitHub according to their billing terms.
Refunds: Refund requests are handled through GitHub Marketplace according to their refund policy.
Purchase History: Your purchase history is maintained by GitHub, not by us.

12. Cookies and Tracking

Our website and extension use the following technologies:

Essential Cookies: Required for basic functionality like session management.
Analytics: We may use anonymous analytics to understand usage patterns and improve our service. No personally identifiable information is collected through analytics.
No Third-Party Tracking: We do not use third-party advertising trackers or sell your data to advertisers.
Local Storage: The extension uses browser local storage to cache preferences and improve performance. This data remains on your device.

13. Compliance and Certifications

Our extension and data practices comply with:

Chrome Web Store Developer Program Policies
General Data Protection Regulation (GDPR)
California Consumer Privacy Act (CCPA)

This Privacy Policy is effective as of the last updated date above and governs your use of the Supercharge Workflows Chrome extension.