CaptionLintCaptionLint

Legal

Privacy Policy

Last updated: May 7, 2026

1. Information We Collect

We collect information you provide directly and information generated by your use of the Service:

  • Account data: name and email address when you register with email/password.
  • OAuth profile data: public profile information (name, email, avatar) returned by GitHub or Google when you sign in with those providers.
  • Caption files: the content of files you upload for linting. Files are processed and stored to provide run history. We do not use your file content for any purpose other than delivering the Service to you.
  • Usage data: pages visited, features used, and lint run metadata (preset, finding counts, duration). Collected via PostHog analytics.
  • Technical data: IP address, browser type, and device information for security and debugging purposes.

2. How We Use Your Information

We use the information we collect to:

  • Create and manage your account and organization.
  • Process caption files and return lint findings and exports.
  • Store run history so you can revisit and re-export previous results.
  • Improve the Service through aggregate usage analytics.
  • Send transactional emails (account confirmation, password reset) — no marketing emails without explicit opt-in.
  • Detect and prevent fraud, abuse, and security incidents.

3. Third-Party Services

We integrate with the following third-party services. Each has its own privacy policy:

  • GitHub OAuth — used for optional social sign-in. We receive your public GitHub profile (name, email, avatar). GitHub's privacy policy applies to data GitHub holds.
  • Google OAuth — used for optional social sign-in. We receive your Google profile (name, email, avatar). Google's privacy policy applies to data Google holds.
  • PostHog — used for product analytics (pageviews, feature usage). Data is pseudonymized. We useperson_profiles: "identified_only"so anonymous visitors are not profiled.

We do not sell your personal data to any third party.

4. Data Storage & Security

Your data is stored in a PostgreSQL database hosted in a secure environment. Passwords are never stored in plain text — better-auth hashes credentials before storage. Caption file content is stored in the database for the duration of your account. We apply industry-standard security practices including encrypted connections (TLS), access controls, and regular security reviews. No system is 100% secure; we cannot guarantee absolute security but we will notify you promptly of any breach that affects your data.

5. Your Rights

Depending on your location, you may have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate data.
  • Request deletion of your account and associated data.
  • Export your data in a portable format.
  • Opt out of analytics tracking (contact us to disable your PostHog profile).

To exercise any of these rights, email us at privacy@captionlint.com. We will respond within 30 days.

6. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify registered users of material changes via email or an in-app notice at least 14 days before the changes take effect. The "last updated" date at the top of this page reflects the most recent revision.

7. Contact

For privacy-related questions or requests, contact us at privacy@captionlint.com.