Privacy Policy

At ShipDock, we believe in radical transparency concerning your data. We built this platform under the core ethos that you should own your code and your infrastructure. Our privacy practices reflect this.

What Information We Collect

We only collect the absolute minimum required to orchestrate your deployments:

• Account Info: Your email address and authentication tokens via third-party providers (e.g., GitHub OAuth).
• Infrastructure Credentials: The SSH keys to your Virtual Private Servers.
• Pipeline Metadata: Deployment logs, Git SHAs, and project names for your dashboard history.

What We DO NOT Collect

• We never clone or store your source code on our disks natively. Code is strictly piped directly from your Version Control System to your target server over isolated CI streams.
• We do not sell your data, telemetry, or server usage statistics to any third party. Ever.

How We Protect Your Data

Your infrastructure credentials (SSH Keys) and environment variables are strictly encrypted at rest using industry-standard AES-256 cipher encryption. They are decrypted only dynamically within the execution context of our backend pipeline right before injection via SFTP.

Your Data Rights

If you delete your account or manually disconnect a repository, we instantly purge all associated SSH keys, environment variables, and webhook links from our relational databases. No ghost data remains.

For inquiries regarding data portability or compliance, contact our support team.