GitLeaderBETA

Privacy Policy

Last updated: March 24, 2026

Overview

GitLeader is a private GitHub analytics and leaderboard service for teams and organizations operated by an independent sole proprietor based in Seychelles. This Privacy Policy explains what information we collect, how we use it, when we share it, and the choices available to you.

By using GitLeader, connecting a GitHub account, installing the GitHub App, joining an organization workspace, submitting a waitlist request, or purchasing a subscription, you acknowledge the practices described in this Privacy Policy.

Information We Collect

We collect information you provide directly to us, including your name, email address, GitHub username, profile image, waitlist submissions, support or feedback messages, organization invites, and billing-related account details.

When you sign in with GitHub or install the GitHub App, we receive account and workspace information from GitHub. Depending on the permissions you grant, this may include your GitHub account identifiers, organization and repository metadata, installation details, contributor identities, repository membership context, and repository activity metadata such as commits, pull requests, and issues.

When you use the service, we also collect operational data such as session records, basic device and usage data, page visits, referral and conversion events, webhook payloads needed for synchronization, and billing event records.

How We Use Information

We use personal information and workspace data to authenticate users, provision accounts, connect GitHub organizations and repositories, calculate leaderboards and activity summaries, send transactional and service emails, manage subscriptions, prevent abuse, investigate incidents, and operate and improve the product.

We use product analytics to understand how visitors and customers use the public site and application, including page views, waitlist conversions, and feature interest. We may also use information to enforce our Terms, comply with legal obligations, and protect GitLeader, our customers, and third parties.

Cookies And Analytics

GitLeader uses cookies and similar storage technologies, including local storage, for session handling, security, and analytics. We currently use PostHog for product analytics and event measurement.

These technologies may store identifiers or usage information in your browser so we can recognize returning visitors, measure usage trends, and improve the service. You can restrict cookies through your browser settings, but some parts of the service may not function correctly if you do so.

Payments

Paid subscriptions are processed by Dodo Payments. GitLeader does not store full payment card numbers or full card security codes. We do store limited subscription and billing records such as plan, status, customer identifiers, subscription identifiers, renewal timing, and billing event history so we can provide the service and support customers.

Emails And Workspace Communications

We may send service-related emails such as login notices, billing notices, support responses, and organization-related communications. We also send weekly leaderboard digest emails to organization members with email addresses on file when digests are enabled through the product workflow.

Email delivery is handled by Resend. Organization administrators are responsible for managing membership access and ensuring they have authority to include teammates in organization communications.

How We Share Information

We share information with service providers that help us operate GitLeader, including GitHub for authentication and repository integrations, Dodo Payments for subscription billing, Resend for email delivery, PostHog for analytics, and Cloudflare for content delivery, performance, and security services. We may also share information with hosting, infrastructure, database, logging, and other security vendors that process data on our behalf.

We may disclose information if required by law, to respond to legal process, to protect rights or safety, to investigate fraud or abuse, or in connection with a merger, acquisition, financing, or asset sale.

We do not sell personal information for money.

Retention

We retain information for as long as reasonably necessary to provide the service, maintain workspace history, support billing and audit requirements, resolve disputes, enforce agreements, and meet legal obligations. Retention periods vary based on the type of data and the purpose for which it was collected.

If an organization disconnects GitHub, cancels service, or requests deletion, we may retain limited records needed for security, accounting, fraud prevention, or legal compliance.

International Transfers

GitLeader and its service providers may process information in countries other than your own. By using the service, you understand that information may be transferred to and processed in jurisdictions that may have different data protection rules than those in your location.

Your Choices And Rights

You may request access, correction, deletion, or export of your personal information, subject to applicable law and our legitimate business needs. Organization administrators may also be able to manage certain workspace information directly within the product.

If you want us to delete your account or personal data, or if you have questions about privacy rights that apply to you, contact [email protected]. We may need to verify your identity before completing a request.

Security

We use reasonable administrative, technical, and organizational safeguards designed to protect information. No method of transmission over the internet or electronic storage is completely secure, so we cannot guarantee absolute security.

Changes To This Policy

We may update this Privacy Policy from time to time. If we make material changes, we may provide notice through the product, by email, or by updating the effective date on this page. Your continued use of GitLeader after an update becomes effective means the updated policy applies to your use of the service.

Contact

For privacy, security, or data rights requests, contact [email protected].