1. Introduction
Conductor Codes operates
BusinessGuard, an automated code-review and web-audit platform integrated with GitHub and Bitbucket.
This Privacy Policy describes our practices for collecting, using, and protecting information when you use BusinessGuard or visit our website.
By using BusinessGuard or accessing our website, you agree to the terms of this Privacy Policy.
2. Scope
This policy applies to:
- Use of BusinessGuard through GitHub or Bitbucket integrations.
- Interactions with our APIs at businessguard.prod.conductorcodes.com/webhook.
Visits to
https://www.conductor.codes.
Conductor Codes does
not collect billing or payment information.
BusinessGuard is accessed through GitHub or Bitbucket repositories authorized by the customer.
3. Information we Collect3.1. Information you provide
- Contact information: When you authorize BusinessGuard or contact support, we may receive your name, email address, organization, and related repository metadata.
- Support Communications: If you email us or submit a support request, we collect the information you provide to resolve your inquiry.
3.2 Information Automatically CollectedWebsite Analytics: We may collect anonymized web-performance and accessibility data from
conductor.codes for product improvement.
4. How We Use Information
We use collected information to:
- Provide and operate the BusinessGuard service.
- Authenticate GitHub and Bitbucket webhook events.
- Generate automated code-review and web-accessibility reports.
-Improve product performance and usability.
-Respond to technical support inquiries.
-Detect and prevent misuse or unauthorized access.
-Comply with legal or regulatory requirements.
5. Handling of Customer Code and Data
No Model Training: BusinessGuard does
not train machine-learning or AI models on customer source code or proprietary data.
Temporary Retention: Code differentials are stored for up to 30 days to ensure accuracy and support auditability. Organizations can disable this retention in their configuration.
Third-Party Integrations: When BusinessGuard uses third-party large language models (e.g., OpenAI, Anthropic), enterprise-level safeguards prevent customer data from being incorporated into global models.
Limited Access: Only authorized automated systems or personnel under confidentiality obligations may access customer data to operate or maintain the Service.
6. Data Protection and Security
We are committed to protecting your information. Conductor Codes employs administrative, organizational, and technical safeguards to prevent unauthorized access, disclosure, or alteration of your data.These measures include encryption, secure data storage, access controls, and regular security reviews. We restrict access to personal and repository data to authorized employees and service providers who need it to operate the platform.While no system can guarantee absolute security, we continuously assess and enhance our security controls to maintain the confidentiality and integrity of customer information.
7. Web Performance and Accessibility Audits
BusinessGuard may collect limited, non-identifiable data (e.g., page-load times, accessibility scores, and resource metrics) from public or customer-approved websites.
This data is used only to analyze and improve performance and accessibility. It does not include personal or customer-identifiable information.
8. Data Sharing and Disclosure
We do
not sell or rent customer or personal data.
We may share information only with:
Service Providers: Trusted vendors (e.g., cloud hosting or API providers) who perform services on our behalf under strict confidentiality agreements.
Legal Requirements: When required to comply with applicable laws, regulations, or court orders.
Business Transfers: In the event of a merger, acquisition, or reorganization, provided equivalent protection standards are maintained.
9. Data Retention and Deletion
We retain data only as long as necessary to provide the Service, comply with legal obligations, or resolve disputes.
When retention periods expire, we securely delete or anonymize all related data.
10. Your Rights
Depending on your jurisdiction, you may have rights to:
- Access, correct, or delete your personal data.
- Object to certain types of processing.
- Withdraw consent where applicable.
To exercise your rights, contact support@conductor.codes. We will respond in accordance with applicable data protection laws.
11. International Data Transfers
Conductor Codes operates primarily from the United States.
When transferring data across borders, we apply appropriate safeguards, such as Standard Contractual Clauses, to ensure that personal data remains protected.
12. Updates to This Policy
We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements.
The “Effective Date” at the top indicates the most recent version.
We will notify users of significant updates via our website or GitHub/Bitbucket integrations.
13. Contact Us
https://www.conductor.codes
support@conductor.codes 
