How does Gitfolio work?

Gitfolio connects to your GitHub or GitLab account via OAuth, analyzes your repositories using AI (Claude, GPT, or Gemini), and generates professional portfolio content including project rankings, skills assessment, and career insights. The entire process takes about 60 seconds.

Is Gitfolio free to use?

Yes! Every new user receives 1 free credit to generate their first portfolio. Additional credits can be purchased through our payment system (MercadoPago) with support for credit cards and PIX.

What portfolio templates are available?

Gitfolio offers multiple professional templates: Job Seeker (resume focus), Freelancer (client acquisition), Tech Lead (leadership), GitHub README, Repository Analysis, and General portfolio. Each template is optimized for different career goals.

Does Gitfolio work with private repositories?

Yes! When you authenticate with GitHub or GitLab, Gitfolio requests appropriate permissions to analyze both public and private repositories. Your code and data are processed securely and never stored permanently.

Privacy Policy - Gitfolio

1. Introduction

Welcome to Gitfolio ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service at gitfolio.dcoder.io.

By using Gitfolio, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Information You Provide

OAuth Authentication: When you connect your GitHub or GitLab account, we receive your email address, username, and profile information through OAuth.
Repository Data: We access your repository information, commit history, and code statistics to generate your portfolio. This includes both public and private repositories you grant us access to.
Payment Information: Payment processing is handled by MercadoPago. We do not store your credit card information on our servers. We only retain transaction IDs and payment status.

2.2 Automatically Collected Information

Usage Data: We collect information about how you interact with our service, including pages visited, features used, and time spent on the platform.
Device Information: We may collect device type, operating system, browser type, and IP address.
Analytics: We use Google Analytics and Microsoft Clarity to understand user behavior and improve our service.

3. How We Use Your Information

We use the collected information for the following purposes:

Portfolio Generation: Analyzing your repositories to create professional portfolio content using AI providers (Anthropic Claude, OpenAI GPT, Google Gemini).
Service Provision: Managing your account, processing payments, and providing customer support.
Service Improvement: Understanding usage patterns to enhance features and user experience.
Communication: Sending service-related notifications, updates, and promotional messages (you can opt-out of marketing communications).
Security: Detecting and preventing fraud, abuse, and security incidents.
Legal Compliance: Complying with legal obligations and enforcing our terms of service.

4. Data Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

4.1 Service Providers

AI Providers: Repository data is sent to Anthropic, OpenAI, or Google Gemini (based on your selection) to generate portfolio content.
Payment Processors: MercadoPago processes payment transactions on our behalf.
Hosting Services: Railway hosts our application and database.
Analytics Providers: Google Analytics and Microsoft Clarity help us understand service usage.

4.2 OAuth Providers

We access your GitHub/GitLab data through their OAuth APIs. Their respective privacy policies apply to their handling of your data.

4.3 Legal Requirements

We may disclose your information if required by law, court order, or governmental authority, or to protect our rights and safety.

4.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

5. Data Storage and Security

Encryption: OAuth tokens are encrypted using Fernet encryption before storage in our database.
HTTPS: All data transmission is encrypted using SSL/TLS protocols.
Database Security: Our PostgreSQL database is hosted on Railway with industry-standard security measures.
Access Control: Access to user data is restricted to authorized personnel only.
Data Retention: We retain your data as long as your account is active. Generated portfolios are stored indefinitely unless you delete them.

Important: While we implement security measures, no system is 100% secure. We cannot guarantee absolute security of your data.

6. Data Processing and AI

Your repository data is processed by third-party AI providers:

Anthropic Claude: Subject to Anthropic's Privacy Policy
OpenAI GPT: Subject to OpenAI's Privacy Policy
Google Gemini: Subject to Google's Privacy Policy

Data Processing: Repository data sent to AI providers is used solely for portfolio generation and is not permanently stored by Gitfolio. AI provider data retention policies apply.

7. Your Rights and Choices

You have the following rights regarding your data:

Access: Request a copy of your personal data stored by Gitfolio.
Correction: Update or correct inaccurate information in your account settings.
Deletion: Request deletion of your account and associated data by contacting us at [email protected].
OAuth Revocation: Disconnect GitHub/GitLab access directly from your dashboard or the respective OAuth provider's settings.
Portfolio Deletion: Delete individual portfolio generations from your dashboard.
Data Portability: Download your generated portfolios in Markdown or JSON format.
Opt-Out: Unsubscribe from marketing communications via the link in our emails.

To exercise these rights, contact us at [email protected]. We will respond within 30 days.

8. Cookies and Tracking Technologies

We use cookies and similar technologies for:

Session Management: Maintaining your login session (essential cookies).
Analytics: Google Analytics and Microsoft Clarity cookies to analyze usage patterns.
Security: CSRF protection and security headers.

You can control cookies through your browser settings. Disabling essential cookies may affect service functionality.

9. Third-Party Links

Our service may contain links to third-party websites (GitHub, GitLab, AI provider documentation, etc.). We are not responsible for their privacy practices. Please review their privacy policies before providing any information.

10. Children's Privacy

Gitfolio is not intended for users under 13 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately at [email protected].

11. International Data Transfers

Your data may be transferred to and processed in countries other than your country of residence, including the United States (Railway hosting, AI providers). By using Gitfolio, you consent to these transfers. We ensure appropriate safeguards are in place for international data transfers.

12. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

Right to know what personal information is collected and how it's used
Right to request deletion of personal information
Right to opt-out of sale of personal information (we do not sell personal information)
Right to non-discrimination for exercising your privacy rights

To exercise these rights, contact us at [email protected].

13. European Users (GDPR)

If you are in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

Right of access, rectification, and erasure
Right to restrict or object to processing
Right to data portability
Right to withdraw consent
Right to lodge a complaint with a supervisory authority

Legal Basis: We process your data based on consent (OAuth authentication), contractual necessity (service provision), and legitimate interests (service improvement, security).

14. Changes to This Privacy Policy

We may update this Privacy Policy periodically. We will notify you of significant changes by:

Posting the updated policy on this page with a new "Last Updated" date
Sending an email notification (for material changes)

Your continued use of Gitfolio after changes constitutes acceptance of the updated policy.

15. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

Email: [email protected]

Website: gitfolio.dcoder.io

GitHub: github.com/defremont/Gitfolio

We will respond to your inquiry within 30 days.

Privacy Policy