Privacy Policy

Last updated: April 10, 2026

OnPath Testing, Inc. ("OnPath," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services at onpath.software.

1. Information We Collect

When you use our services, we collect the following information:

• Name — provided when you submit an audit request
• Email address — used to identify your account and communicate results
• GitHub repository URL — the public repository you submit for analysis

We also automatically collect technical information such as IP address, browser type, and access timestamps for security and analytics purposes.

2. How We Use Your Information

We use the information we collect to:

• Perform AI-powered code quality audits on the repositories you submit
• Create and manage guest accounts so you can view your audit results
• Communicate with you about your audit results and our services
• Improve and optimize our platform and audit methodology
• Ensure the security and integrity of our services

3. Third-Party Services

To provide our services, we share data with the following third-party providers:

• GitHub API — to access and retrieve public repository data for analysis
• Anthropic (Claude) — to perform AI-powered code analysis and generate audit findings
• Cloudflare — to host our website, run our backend services, and store audit data

Each of these providers has their own privacy policies governing the data they process. We do not share your information with any other third parties for marketing or advertising purposes.

4. Data Retention

We retain your personal information and audit data for a period of 365 days from the date of your last audit. After this period, your data is automatically deleted from our systems. You may request earlier deletion at any time by contacting us.

5. Data Sale

We do not sell, rent, or trade your personal information to any third party. Your data is used solely for the purposes described in this policy.

6. Your Rights

You have the following rights regarding your personal information:

• Access — request a copy of the personal data we hold about you
• Correction — request that we correct any inaccurate or incomplete data
• Deletion — request that we delete your personal data and audit results

To exercise any of these rights, please contact us using the information below. We will respond to your request within 30 days.

7. Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. All data is transmitted over HTTPS and stored in encrypted form on Cloudflare's infrastructure.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page with a revised "Last updated" date.

9. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us: