Privacy Policy

Last Updated: January 27, 2026

At FunctionFlow, we take your privacy seriously. This policy explains how we collect, use, and protect your information.

Data Collection and Usage

What We Collect

• GitHub account information (username, email, avatar) via OAuth
• Repository metadata (name, owner, description) that you explicitly add
• Parsed function metadata (structure, nodes, connections) for visualization
• Usage statistics (workflow views, function analyses)

What We Do NOT Collect

• We do NOT collect or store raw repository code - Code is fetched on-demand from GitHub API
• We do NOT use your code for AI model training - Your code is never used to train AI models
• We do NOT use your code for educational purposes - Your code remains private
• We do NOT share your data with third parties - Your data stays private

Data Ownership

You retain full ownership of your repository data. We only use your data to:

• Display functions in a visual node view for validation purposes
• Provide the visualization and auditing features you request
• Improve our service (using aggregated, anonymized usage data only)

You can delete your repositories and associated data at any time through the application interface.

Data Storage

• Repository code is fetched on-demand from GitHub API - we do not store raw code
• Only parsed function metadata is stored in our database
• Cached code is stored temporarily for visualization purposes only
• All data is stored securely using industry-standard encryption
• You can request complete data deletion at any time

GitHub Integration

When you connect your GitHub account, we request the following permissions:

• Read repository access - To fetch repository metadata and code
• Read user information - To display your GitHub username and avatar

We only access repositories that you explicitly add to FunctionFlow. We never access repositories you haven't added.

AI Processing

When analyzing complex functions, we may use Claude Opus (Anthropic) to reconstruct function visualizations. Your code is sent to Anthropic's API for processing, but:

• Anthropic does not use your code for training their models
• We cache AI analysis results to minimize API calls
• You can see which functions used AI analysis in the visualization

Data Security

We implement industry-standard security measures:

• All data transmission is encrypted using HTTPS
• GitHub tokens are stored encrypted in our database
• Database access is restricted using Row Level Security (RLS)
• Regular security audits and updates

Your Rights

You have the right to:

• Access your data at any time
• Delete your account and all associated data
• Remove repositories from FunctionFlow
• Request a copy of your data
• Opt out of data collection (by not using the service)

Contact Us

If you have questions about this privacy policy or wish to exercise your rights, please contact us through the application.