Privacy Policy

Last updated: May 28, 2026

Introduction

AbabilX ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services (the "Service").

Please read this Privacy Policy carefully. If you do not agree with our policies and practices, please do not use our Service. By accessing and using AbabilX, you acknowledge that you have read, understood, and agree to be bound by all the provisions of this Privacy Policy.

1. Information We Collect

1.1 Information You Directly Provide

  • Account Registration: When you sign up via GitHub, Google, or Slack OAuth, we collect your email address, username, profile picture, and authentication tokens.
  • OAuth Credentials: GitHub personal access tokens (for repository access), Slack workspace tokens (for channel posting), and Google credentials (for mobile sign-in).
  • User Preferences: Language selection, theme preference (dark/light mode), and privacy settings you configure.
  • Device Information (Mobile): Firebase Cloud Messaging (FCM) tokens for push notifications on iOS and Android devices.

1.2 Information Collected Automatically

  • Repository Data: We access and store your GitHub repositories list, commit history, branch information, and pull requests when you use our service features.
  • Auto-Commit Job Data: When you create auto-commit jobs, we store the job configuration including repository name, number of days, commits per day, and job status.
  • Standup Rules Configuration: We store your standup rule settings including Slack channels, send times, timezones, days of the week, repository targets, and notification preferences.
  • Generated Content: AI-generated PR summaries, weekly digests, and standup messages we create using DeepSeek AI on your behalf.
  • Message History: We store all Slack messages sent through our service, including timestamps and message content, for history and replay purposes.
  • Usage Analytics: IP address, browser type, operating system, device type, and pages/features accessed (via standard web server logs).

1.3 Information from Third Parties

  • GitHub API: Public repository metadata, commit information, pull request details, and branch information from GitHub's API.
  • Slack API: Workspace channel list, channel information, and message delivery status from Slack's API.
  • Google/Firebase: User identity information from Google Sign-In and authentication status.

2. How We Use Your Information

  • Service Delivery: Providing auto-commit scheduling, standup rule execution, PR review summaries, and weekly digest generation.
  • GitHub & Slack Integration: Accessing your repositories, creating commits, and posting messages to your Slack workspace on your behalf.
  • AI-Powered Features: Using DeepSeek API to generate PR summaries and standup message suggestions based on your commit history and preferences.
  • Authentication & Authorization: Verifying your identity and controlling access to your account and data.
  • Push Notifications: Sending scheduled reminders and notifications via FCM to your registered mobile devices.
  • Service Improvement: Analyzing usage patterns to improve features, fix bugs, and develop new functionality.
  • Legal Compliance: Complying with legal obligations, law enforcement requests, and protecting against fraud or abuse.
  • Communication: Sending account-related notifications, policy updates, and security alerts.

3. Data Storage & Security

3.1 Where We Store Data

Your data is stored on secure servers located in compliance with applicable data protection laws. We use PostgreSQL databases for structured data and Redis for caching. All data is encrypted in transit using HTTPS/TLS.

3.2 Security Measures

  • Encryption: OAuth tokens and sensitive credentials are encrypted at rest and transmitted securely.
  • Authentication: Bearer token authentication (JWT) required for all API requests after login.
  • Authorization: Middleware validates user identity and prevents unauthorized access to user-specific data.
  • Rate Limiting: API endpoints are rate-limited to prevent abuse and service disruption.
  • Admin Controls: Restricted admin panel for monitoring and managing accounts (super_admin only).

3.3 Data Retention

We retain your data for as long as your account is active or as needed to provide services. You can request deletion of your account and associated data at any time, which will remove all personal information (though we may retain anonymized data for analytics). Slack messages and commit records associated with your jobs are retained until job deletion.

4. Third-Party Services & Integrations

AbabilX integrates with third-party services. Your data may be shared with these services as necessary for core functionality:

  • GitHub: We use your GitHub token to access repositories, read commit history, and create commits. Your token is never shared with other users.GitHub Privacy Policy
  • Slack: We use your Slack token to post messages and retrieve channel lists. Messages are sent on your behalf to channels you authorize.Slack Privacy Policy
  • Google & Firebase: Mobile authentication via Google Sign-In and Firebase Cloud Messaging for push notifications.Google Privacy Policy
  • DeepSeek AI: We send limited commit/PR context to DeepSeek API for generating PR summaries and standup message suggestions. No user personal information (emails, names) is sent to DeepSeek unless explicitly mentioned in commit messages or PR content.DeepSeek Privacy Info
  • Sentry/Analytics (Optional): Error tracking and analytics services may be used to monitor application performance and diagnose issues.

We are not responsible for the privacy practices of third-party services. We encourage you to review their privacy policies.

5. Your Privacy Rights

Depending on your jurisdiction, you may have the following rights:

  • Access: Request a copy of all personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your account and associated personal data (right to be forgotten).
  • Portability: Request export of your data in a machine-readable format.
  • Revoke Consent: Disconnect OAuth integrations (GitHub, Slack, Google) at any time via your profile settings.
  • Opt-Out: Disable push notifications or change communication preferences in your settings.

To exercise these rights, contact us at privacy@ababilx.com. We will respond within 30 days or as required by applicable law.

6. Plan-Based Data Limits

AbabilX offers three plans with different data usage limits:

Free Plan: Up to 7 days of auto-commits, 3 commits per month, 2 commits per day limit.
Premium Plan: Up to 365 days of auto-commits, unlimited monthly usage, 10 commits per day limit.

Exceeding plan limits will result in job pausing or blocking until your next billing cycle or plan upgrade.

7. Children's Privacy

AbabilX is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If we become aware that a child has provided us with personal information, we will take steps to delete such information and terminate the child's account. If you believe we have collected information from a child, please contact us immediately at privacy@ababilx.com.

8. International Data Transfers

Your information may be transferred to, stored in, and processed in countries other than your country of residence. These countries may have data protection laws that differ from your home country. By using AbabilX, you consent to the transfer of your information to countries outside your country of residence, which may not provide the same level of data protection as your home country.

9. Contact & Support

For privacy-related questions, concerns, or to exercise your privacy rights, please contact us:

Email: privacy@ababilx.com

Support Email: support@ababilx.com

Response Time: We aim to respond to privacy inquiries within 30 days.

10. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of significant changes by posting the updated policy on this page and updating the "Last updated" date above. Your continued use of AbabilX after changes become effective constitutes your acceptance of the updated Privacy Policy. We encourage you to review this policy periodically to stay informed about how we protect your information.

11. Legal Basis for Processing (GDPR)

For users in the European Economic Area, we process your personal data based on:

  • Consent: Your explicit consent to collect and process data when you create your account.
  • Contract Performance: Processing necessary to provide the services you've subscribed to.
  • Legitimate Interest: Our legitimate interests in improving services, preventing fraud, and ensuring security.
  • Legal Obligation: Compliance with applicable laws and regulations.

Quick Links

Contact

Location

Sector 4, Uttara
Dhaka, Bangladesh

© 2026 AbabilX. All rights reserved. This Privacy Policy is effective as of May 28, 2026 and was last updated on May 28, 2026.