Privacy Policy
Effective Date: July 31, 2025
This privacy policy explains how Snippets Library collects, uses, and protects your personal information.
Privacy Summary
We respect your privacy and only collect data necessary to provide our services. We use GitHub OAuth for authentication, store your code snippets securely, and provide analytics for public snippets. We never sell your data or track you across other websites.
1. Information We Collect
GitHub Authentication Data
When you sign in with GitHub OAuth, we collect:
Profile Information:
- • GitHub username
- • Display name
- • Profile avatar/image
- • Primary email address
Technical Data:
- • OAuth access tokens
- • Session identifiers
- • Account creation/update timestamps
OAuth Scope: read:user user:email
Content & Usage Data
Snippet Data:
- • Code snippet content
- • Titles and descriptions
- • Programming language
- • Tags and metadata
- • Public/private settings
Platform Preferences:
- • Theme preferences (light/dark)
- • Code highlighting themes
- • Language preferences
- • Notification settings
Analytics & Performance
For public snippets only, we collect minimal analytics:
- • View Counts: Anonymous visitor counts for public snippets
- • Access Timestamps: When public snippets are viewed
- • Viewer IP (Hashed): For deduplication purposes only
- • No Personal Tracking: We don't track individual browsing behavior
Private snippets are never tracked or analyzed.
2. How We Use Your Information
Essential Services
- • User authentication and account management
- • Code snippet storage and retrieval
- • Syntax highlighting and language detection
- • Public snippet sharing functionality
Platform Improvement
- • Understanding popular programming languages
- • Identifying performance optimization opportunities
- • Improving user experience based on usage patterns
- • Debugging and error monitoring
What We DON'T Do
- • Sell your personal information
- • Share data with third-party advertisers
- • Track you across other websites
- • Use your code for training AI models
- • Send marketing emails (unless opted in)
- • Access your private GitHub repositories
3. Data Storage & Security
Data Infrastructure
Database:
- • PostgreSQL with Drizzle ORM
- • Encrypted data transmission (HTTPS)
- • Regular automated backups
- • Access controls and authentication
Security Measures:
- • Secure OAuth token handling
- • Session management with NextAuth.js
- • Input validation and sanitization
- • Protection against common web vulnerabilities
Access Controls
- • Private Snippets: Only accessible by the snippet owner
- • Public Snippets: Accessible via unique share links only
- • User Data: Protected by authentication and authorization layers
- • Admin Access: Strictly limited and logged for security purposes
4. Data Sharing & Third Parties
Limited Third-Party Integration
We only share data with essential service providers:
GitHub (OAuth Provider):
• Authentication and profile data exchange as per OAuth 2.0 standards
• Subject to GitHub's Privacy Policy
Hosting Infrastructure:
• Cloud hosting providers (encrypted data storage)
• Database services with appropriate security certifications
What We Never Share
- • Personal information with advertisers or marketers
- • Private code snippets with any third party
- • User behavior data for commercial purposes
- • Email addresses for spam or unsolicited communications
5. Your Privacy Rights
Access & Control
- • View all your stored data
- • Edit or delete your snippets
- • Update your profile information
- • Manage privacy settings
Data Deletion
- • Delete individual snippets
- • Request complete account deletion
- • Export your data before deletion
- • Permanent removal within 30 days
International Users & GDPR
For users in the European Union and other jurisdictions with data protection laws:
Your Rights Include:
- • Right to access your data
- • Right to rectification
- • Right to erasure ("right to be forgotten")
- • Right to data portability
Legal Basis:
- • Legitimate interest for service provision
- • Consent for optional features
- • Contract performance for core functionality
6. Data Retention & Deletion
Retention Periods
Active Account Data:
- • Code snippets: Until user deletion
- • Profile information: Until account deletion
- • User preferences: Until account deletion
System Data:
- • Session tokens: 30 days or logout
- • Analytics data: 12 months maximum
- • Error logs: 90 days for debugging
Account Deletion Process
When you delete your account:
- All private snippets are immediately deleted
- Public snippets can be retained or deleted (your choice)
- Personal information is removed within 30 days
- Anonymized analytics may be retained for historical purposes
7. Cookies & Tracking
Essential Cookies Only
We use minimal cookies necessary for platform functionality:
Authentication Cookies:
• Session management and login persistence
• GitHub OAuth token storage
Preference Cookies:
• Theme settings (dark/light mode)
• Language and UI preferences
No Tracking Scripts
- • No Google Analytics or similar tracking
- • No third-party advertising cookies
- • No cross-site tracking mechanisms
- • No behavioral profiling or user fingerprinting
8. Policy Updates & Contact
Policy Changes
We may update this Privacy Policy to reflect:
- • Changes in our data practices
- • New features or services
- • Legal or regulatory requirements
Notice: 30 days advance notice for material changes via platform notification.
Privacy Concerns
- • GitHub Issues (privacy label)
- • Data protection questions
- • Security vulnerability reports
Data Requests
- • Account deletion requests
- • Data export requests
- • GDPR compliance inquiries
Response Time: We aim to respond to privacy-related inquiries within 8-12 hours and fulfill data requests within 30 days as required by applicable laws.