Privacy Policy

LOVAFIX

Last updated: January 30, 2026

1. Introduction

LOVAFIX ("we", "our", "us") respects your privacy. This Privacy Policy explains how we collect, use, and protect your information when you use our service at https://lovafix.dev.

2. Information We Collect

2.1 Account Information

When you connect your GitHub account, we collect:

  • GitHub user ID
  • GitHub username
  • Email address (from GitHub)
  • Profile avatar URL

2.2 Repository Data

When you scan a repository:

  • We temporarily clone the repository
  • We analyze localization files only
  • We do NOT store your source code permanently
  • All temporary data is deleted within 1 hour

2.3 Usage Data

We automatically collect:

  • IP address (for rate limiting)
  • Browser type and version
  • Pages visited
  • Scan requests and results (anonymized)

2.4 Payment Information

Payment is processed by Paddle.com. We do NOT store:

  • Credit card numbers
  • Bank account details
  • Payment credentials

Paddle handles all payment data according to their privacy policy.

3. How We Use Your Information

We use collected information to:

  • Provide and maintain the Service
  • Process your scan requests
  • Create pull requests on your behalf (when authorized)
  • Process payments
  • Send important service notifications
  • Improve our Service
  • Prevent abuse and fraud

4. Data Storage and Security

4.1 Where We Store Data

  • Account data: Encrypted database on EU servers
  • OAuth tokens: Encrypted with AES-256
  • Repository data: Temporary only, never persisted

4.2 Security Measures

  • All data transmitted via HTTPS/TLS
  • OAuth tokens encrypted at rest
  • Regular security audits
  • Minimal data retention

4.3 Data Retention

Data TypeRetention Period
Account infoUntil you delete your account
OAuth tokensUntil you disconnect GitHub
Scan results7 days
Repository clonesDeleted immediately after scan
Payment recordsAs required by law (typically 7 years)

5. Data Sharing

We do NOT sell your personal data.

We may share data with:

Third PartyPurposeData Shared
GitHubAuthentication, PR creationOAuth tokens (encrypted)
PaddlePayment processingEmail, transaction details
CloudflareCDN, securityIP address
AnthropicAI processingTranslation strings only (no personal data)

6. Your Rights

Under GDPR and similar laws, you have the right to:

  • Access — Request a copy of your data
  • Rectification — Correct inaccurate data
  • Erasure — Delete your account and data
  • Portability — Export your data
  • Object — Opt out of certain processing
  • Withdraw consent — Disconnect GitHub at any time

To exercise these rights, contact: privacy@lovafix.dev

7. Cookies

We use minimal cookies:

CookiePurposeDuration
sessionUser authentication7 days
csrf_tokenSecuritySession

We do NOT use:

  • Tracking cookies
  • Advertising cookies
  • Third-party analytics cookies

8. Children's Privacy

LOVAFIX is not intended for children under 16. We do not knowingly collect data from children.

9. International Transfers

Your data may be processed in:

  • European Union (primary)
  • United States (Anthropic AI processing)

All transfers comply with GDPR requirements.

10. Changes to This Policy

We may update this Privacy Policy. We will notify you of material changes via:

  • Email notification
  • Website banner
  • Service notification

11. Contact Us

For privacy questions or concerns:

Email: privacy@lovafix.dev

Website: https://lovafix.dev

Data Controller:

Evgeny Belousov

LOVAFIX

Email: privacy@lovafix.dev

This Privacy Policy is effective as of January 30, 2026.

← Back to LOVAFIX