AppenticAppentic

Privacy Policy

1. Introduction

At Appentic, we are committed to protecting your privacy and being transparent about how we collect, use, and safeguard your personal data. This Privacy Policy explains our data practices in accordance with UK GDPR and the Data Protection Act 2018.

Appentic is a cloud platform that enables developers to deploy applications from GitHub with managed databases, automatic TLS, and built-in monitoring.

2. Data Controller Information

Appentic operates from England, United Kingdom as the data controller determining how and why personal data gets processed.

3. Data We Collect

3.1 Authentication Data

When you sign in via Google or GitHub OAuth, we collect your full name, email address, profile picture URL, and account identifier.

3.2 Service Data

Information about the services you deploy, including application names, GitHub repository connections, deployment configurations, environment variables (encrypted), domain settings, and deployment history.

3.3 Database & Resource Data

Metadata about resources you provision, including PostgreSQL databases, Redis instances, workers, and cron jobs. We do not access the contents of your databases.

3.4 Financial Data

Billing records, resource usage, and payment history. Full credit card details are not stored by Appentic; Stripe handles payment processing securely.

3.5 Technical Data

IP address, browser type and version, device type, operating system, pages visited, features used, and activity timestamps.

4. Legal Basis for Processing

Consent: You consent by creating an account and using Appentic.

Contract Performance: Processing enables the deployment, hosting, and management of your applications, including account creation, service provisioning, resource management, and billing.

Legitimate Interests: Data processing supports platform operation, improvement, and security through analytics, fraud prevention, and optimisation.

5. How We Use Your Data

We use your personal data to:

  • Provide and operate the platform
  • Authenticate accounts and maintain sessions
  • Deploy and manage your applications
  • Provision and manage databases and other resources
  • Process billing and maintain usage records
  • Provide log streaming, metrics, and monitoring
  • Analyse usage patterns and improve the platform
  • Detect fraud and security threats
  • Process payments via Stripe
  • Comply with legal obligations

6. Data Storage & Security

6.1 Where We Store Your Data

User Data & Metadata: Stored in secure encrypted databases. Application Data: Your deployed applications run in isolated containers. Session Data: Stored in encrypted session cookies. We use UK and EU data centres where possible, though third-party services may process data outside UK/EU.

6.2 Security Measures

  • Encryption at rest for all database records
  • HTTPS/TLS encryption for all data in transit
  • OAuth authentication (no passwords stored by Appentic)
  • Environment variables encrypted at rest
  • Regular security audits
  • Access controls and role-based permissions

7. Data Sharing

We do not sell your personal data to third parties.

7.1 Third-Party Service Providers

Google and GitHub handle authentication; cloud infrastructure providers host your applications; Stripe processes payments.

7.2 Legal Requirements

Data disclosure occurs when required by law, court order, or legal process, or to protect the rights, property, or safety of Appentic, our users, or the public.

8. Your Rights Under UK GDPR

Right of Access: You can request copies of your personal data.

Right to Rectification: You can update or correct personal data through your account settings or by contacting support.

Right to Erasure: You can request deletion of your account and associated data. Some data may be retained for legal or legitimate business purposes.

Right to Data Portability: You can request machine-readable copies of your data for transferring to other services.

Right to Object: You can object to data processing based on legitimate interests.

Right to Withdraw Consent: You can withdraw consent by deleting your account.

To exercise these rights, please contact support.

9. Data Retention

  • Account Data: Retained until account deletion
  • Deployment Logs: Retained for 90 days
  • Technical Logs: Typically 90 days for security and analytics
  • Payment Records: Retained per legal requirements

After deletion, we make reasonable efforts to remove your data, though backups may persist temporarily.

10. Cookies & Tracking

Appentic uses cookies and similar technologies for service provision and improvement. Detailed information is available in our Cookie Use Policy. Essential cookies are necessary for functionality; you can manage non-essential cookies through your browser settings, though this may limit functionality.

11. International Data Transfers

While we attempt to use UK and EU storage, third-party service providers may process data internationally. Appropriate safeguards include standard contractual clauses approved by UK authorities, transfers to countries with adequate data protection laws, and service providers with strong security commitments.

12. Children's Privacy

Appentic is intended for adults aged 18 and over. We do not knowingly collect data from anyone under 18, and accounts discovered to belong to minors will be deleted.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. Material changes will trigger date updates and reasonable notification efforts. Continued use constitutes acceptance.

14. Contact & Complaints

If you have questions or complaints, please contact support. You may also lodge complaints with the Information Commissioner's Office (ICO) at ico.org.uk or 0303 123 1113.

Last Updated: April 2026