Effective Date: February 1, 2025
Article 1. Introduction
Praise First ("we," "us," or "our") respects your privacy and is committed to protecting your personal information when you use Code Tempo (the "Service"). This Privacy Policy explains how we collect, use, and protect your information.
Article 2. Information We Collect
We collect the following types of information:
2.1 Account Information
- GitHub User ID (identifier)
- GitHub login name
- GitHub display name
- GitHub email address
- GitHub profile image URL
- Subscription plan (FREE / PRO / TEAM / ENTERPRISE)
- Invitation code (if registered via referral)
- Account creation and update timestamps
2.2 GitHub Integration Information
Through GitHub OAuth authentication, we access the following information:
- GitHub access token
- Repository information (name, description, URL, visibility)
- Commit information (author, date, lines changed)
- Pull request information (creation date, merge date, review information)
- Issue information (creation date, close date)
- Organization information (organization names)
* About Access Tokens
Access tokens are temporarily held for session management. They are stored in encrypted HTTP-only cookies and are not saved in the database. Tokens are automatically invalidated upon session termination or after 30 days.
2.3 Usage Information
- User actions (repository selection, date range changes, tab switches, etc.)
- Page views
- Error information
2.4 Automatically Collected Information
The following information may be automatically collected when you access the Service:
- IP address
- User agent (browser and OS information)
- Timezone
- Referrer URL
- Approximate location (country/region level)
Article 3. How We Use Your Information
We use the collected information for the following purposes:
| Information Category | Purpose |
|---|
| Account Information | User authentication, session management, subscription management, service provision |
| GitHub Integration Information | Analysis and visualization of GitHub repository development activities |
| Usage Information | Service improvement, feature development, usage trend analysis |
| Automatically Collected Information | Fraud prevention, service stability, statistical analysis |
When used for statistical or analytical purposes, information is processed in a way that does not identify individuals.
Article 4. Information Sharing and Third-Party Services
4.1 Basic Policy
We do not share your personal information with third parties except in the following circumstances:
- With your consent
- When required by law
- With service providers necessary for operating the Service
4.2 Third-Party Services
We use the following external services to provide the Service:
| Service | Provider | Country | Purpose | Shared Information |
|---|
| GitHub | GitHub, Inc. | USA | OAuth authentication, repository data retrieval | Authentication info, API access |
| Vercel | Vercel Inc. | USA | Hosting, CDN | Access logs |
| Vercel Analytics | Vercel Inc. | USA | Access analytics | Page views, device info, location |
| Neon | Neon Inc. | USA | Database | All account information |
| Statsig | Statsig, Inc. | USA | Feature flags, event analytics | User ID, action events |
For each service's privacy policy, please refer to:
Article 5. International Data Transfers
Personal information collected through the Service may be transferred to countries outside Japan (primarily the United States) through our third-party service providers.
For information about personal data protection systems in the United States, please refer to the Personal Information Protection Commission website (https://www.ppc.go.jp/).
Each service provider implements appropriate security measures and has entered into necessary contracts with us.
Article 6. Data Retention
- Account Information: Retained as long as your account is active.
- Usage Information: Retained for 1 year from collection.
- Account Deletion: Related personal information will be deleted within 30 days of the deletion request. However, information required by law to be retained will be kept for the legally mandated period.
- Backup Data: Complete deletion from regular backups may take up to 90 days.
Article 7. Security
We implement the following security measures to protect your personal information:
7.1 Technical Measures
- Communication encryption (HTTPS with TLS 1.2 or higher)
- Secure storage of access tokens
- Proper authentication and authorization mechanisms
7.2 Organizational Measures
- Appropriate access control management
- Maintenance and improvement of security knowledge
7.3 Third-Party Management
Each service provider has obtained SOC 2 or equivalent third-party certifications or implements equivalent security measures.
Article 8. Your Rights and Procedures
8.1 Your Rights
Under the Act on the Protection of Personal Information (APPI), you have the following rights:
- Right to request disclosure of personal information
- Right to request correction, addition, or deletion of personal information
- Right to request suspension of use or erasure of personal information
- Right to request suspension of third-party provision
8.2 How to Submit Requests
If you wish to exercise any of the above rights, please contact us at the following email address:
Contact: customer@praisefirst.jp
Please provide the following information with your request:
- Your name (GitHub display name)
- Registered email address
- Details of your request
8.3 Identity Verification
To prevent impersonation, we ask that you contact us from your registered email address.
8.4 Response Time
We will respond to requests within 2 weeks of receipt in principle.
8.5 Fees
There is no fee for disclosure requests.
8.6 Revoking GitHub Authorization
To revoke GitHub authorization, you can remove access permission for the Service from GitHub's settings page (https://github.com/settings/applications).
Article 9. Cookies and Tracking
9.1 Cookie Usage
We use cookies for the following purposes:
| Type | Purpose | Required/Optional |
|---|
| Authentication Cookies | User authentication and session management | Required |
| Analytics Cookies | Usage analysis (Vercel Analytics, Statsig) | Optional |
9.2 JavaScript Event Collection
We use the Statsig SDK to collect and analyze user action events (page navigation, button clicks, etc.).
9.3 Disabling Cookies
You can disable cookies through your browser settings. However, disabling authentication cookies will prevent you from logging into the Service.
Article 10. Changes to This Policy
We may update this Privacy Policy from time to time. If we make significant changes, we will notify you through the Service or by email. Your continued use of the Service after any changes constitutes acceptance of the updated policy.
Article 11. Contact Us
If you have any questions about this Privacy Policy, please contact us at:
| Business Name | Praise First |
| Representative | Yoshihiro Isago |
| Address | Aoba-ku, Sendai City, Miyagi 980-0803, Japan
* Detailed street address available upon request |
| Email | customer@praisefirst.jp |
| Business Hours | Weekdays 10:00-18:00 (excluding weekends, holidays, and year-end/New Year) |
