Skip to main content

🔒 GitMe Data Security & Privacy

GitMe is built with security-first principles to keep your organization’s source code and analytics safe at every step. The following safeguards ensure reliability, privacy, and transparency across the entire platform.

Infrastructure Reliability​

  • Enterprise-grade hosting: GitMe runs on Amazon Web Services (AWS EC2), providing globally recognized, secure cloud infrastructure.
  • Verified deployments: All deployments are automated and cryptographically verified so that only authorized updates reach production.
  • Self-healing services: Core services automatically restart and recover after system restarts, preserving uptime and a consistent experience.

Data Protection & Privacy​

  • Sensitive data masking: API keys, tokens, passwords, and other credentials inside code diffs are automatically detected and anonymized before analysis.
  • Scope filtering: Binary or excluded files are skipped to reduce unnecessary data handling and limit exposure to sensitive information.
  • No source storage: GitMe never stores customer source code permanently; only metadata and anonymized analysis outputs are retained.

Together, these policies ensure that your code remains private and protected throughout every workflow.

Authentication & Access Security​

  • Cloudflare Turnstile verification: Each login and password reset request is safeguarded by Cloudflare’s bot-protection layer.
  • Token-based sessions: Authentication uses short-lived, signed JSON Web Tokens (JWT) for secure, time-bound access.
  • Strong password hashing: All passwords are stored using industry-standard bcrypt encryption.
  • Brute-force protection: Accounts are temporarily locked after repeated failed login attempts, and every successful authentication is logged for auditability.

Backup & Disaster Recovery​

  • Daily encrypted backups: Automated backups run every day, storing GitMe data with encryption and precise time-stamping.
  • Retention rotation: Older backups are rotated to maintain continuity and efficient storage usage.
  • Resilient recovery: These measures guarantee recoverability even during unexpected infrastructure or network incidents.

Network & Request Security​

  • Strict CORS policies: All API requests are limited to GitMe-approved domains to block unauthorized origins.
  • Cloudflare edge protection: Incoming traffic is filtered through Cloudflare’s edge network, stopping malicious or automated attempts before they reach GitMe’s backend.
  • Comprehensive request logging: Every request is logged to enable traceability, anomaly detection, and rapid incident response.

Transparency & Auditability​

  • Centralized observability: GitMe maintains unified logs of critical operations, ensuring full visibility into platform activity.
  • Continuous monitoring: These logs make it easy to identify errors quickly and monitor system health, so customer data is consistently handled safely and responsibly.

✅ Summary for Customers​

Your data is protected at every step. GitMe is hosted on AWS, shielded by Cloudflare, and reinforced with encryption, masking, and access controls. Sensitive code never leaves your control, each request is verified, and systems are monitored and backed up daily to keep your organization secure.