Privacy Policy
Last updated: May 2026
What DocDr is
DocDr is an autonomous documentation agent. It reads merged pull requests from your GitHub repositories, generates Markdown documentation updates via an AI model, and opens Draft PRs for your review. DocDr never pushes directly to your default branch.
Data we collect
- GitHub OAuth tokens — stored encrypted at rest (XSalsa20-Poly1305 via PyNaCl SecretBox). Used only to list repositories, commit the DocDr workflow file, and set the
DOCDR_LICENSE_KEYActions secret. - GitHub username and user ID — used to identify your account.
- Repository names — the repos you connect to DocDr.
- Polar.sh license keys — used to validate your subscription and meter usage. Stored hashed (SHA-256) for lookup; plaintext stored only where required for billing API calls.
- Pull request diffs — sent from your GitHub Actions runner to our API for AI processing. Diffs are secret-scanned before transmission and are not stored after processing.
- Usage logs — count of PR events processed per billing cycle. No diff content is stored.
- Email address — received from Polar.sh when you subscribe, used to send transactional emails (welcome, quota warnings, receipts).
What we do not collect
- We do not store your source code or pull request content after generating a documentation update.
- We do not read repositories you have not explicitly connected.
- We do not sell or share your data with third parties, except as required to operate the service (see below).
Third-party services
- GitHub — OAuth identity and repository access. Governed by GitHub's privacy statement.
- Polar.sh — subscription billing and license key management. Polar acts as merchant of record. Governed by Polar's privacy policy.
- Google Gemini — AI model used to generate documentation updates from sanitized diffs. Diff content is sent to Google's API and subject to Google's privacy policy.
- Railway — cloud hosting for the DocDr backend. Governed by Railway's privacy policy.
Data retention
OAuth tokens and account data are retained while your account is active. Usage logs are retained for billing reconciliation. You may delete your account at any time by contacting us; we will purge your data within 30 days.
Security
GitHub OAuth tokens are encrypted at rest using XSalsa20-Poly1305 (PyNaCl SecretBox). All data is transmitted over TLS. We follow responsible disclosure practices and patch security issues promptly.
Contact
Questions or deletion requests: [email protected]