Privacy Policy

Last updated: March 15, 2026

1. What We Collect

Argus collects the following categories of metadata to provide its analytics service:

  • Git metadata -- commit hashes, timestamps, author information, file change counts, branch names, and pull request metadata.
  • AI usage metrics -- model names, token counts (input/output), session duration, and tool invocation counts.
  • Cost data -- API key usage costs, per-model pricing, and aggregate spending metrics.
  • Account information -- name, email, organization membership, and role.

2. What We Don't Collect

Argus is built on a strict "metadata only" principle. We never collect, store, transmit, or analyze:

  • Source code or file contents
  • AI prompt or response content
  • Code diffs or patch data
  • Clipboard or editor buffer contents
  • Screenshots or screen recordings

3. How We Use Your Data

We use the collected metadata to provide analytics dashboards, generate reports and digests, calculate cost attribution, detect anomalies in spending patterns, and deliver alert notifications. Aggregated, anonymized data may be used to improve the Service and develop benchmarking features.

4. Data Retention

Data retention is configurable per organization. The default retention period is 2 years. Organizations may configure shorter retention periods through their settings. When data exceeds the retention period, it is permanently deleted from our systems within 30 days.

5. Data Deletion

You may request deletion of your personal data at any time by contacting [email protected]. We will process deletion requests within 7 business days. Organization administrators can also initiate data deletion through the settings dashboard.

6. Security

We implement industry-standard security measures to protect your data:

  • Encryption at rest (AES-256) and in transit (TLS 1.3)
  • Role-based access controls with principle of least privilege
  • Regular security audits and penetration testing
  • SOC 2 Type II certification (planned)
  • Isolated, single-tenant data storage per organization

7. Third-Party Services

Argus integrates with the following third-party services in the course of operating the platform:

  • Clerk -- authentication and user management
  • Stripe -- payment processing and subscription management
  • Resend -- transactional email delivery (digests, alerts, invitations)

Each third-party provider is subject to its own privacy policy and terms of service. We select providers that meet our security and privacy standards.

8. Your Rights

Under applicable data protection laws, including the GDPR, you have the right to:

  • Access -- request a copy of all personal data we hold about you
  • Portability -- receive your data in a structured, machine-readable format
  • Rectification -- correct inaccurate personal data
  • Deletion -- request erasure of your personal data
  • Restriction -- request limitation of processing
  • Objection -- object to processing based on legitimate interests

9. Contact

For any privacy-related questions or requests, please contact us at [email protected].