</>
MyYearInReview

Privacy Policy

Last Updated: January 4, 2026

1. Introduction

MyYearInReview ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service at myyearinreview.dev.

By using the Service, you consent to the data practices described in this policy.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, and password when you register
  • Payment Information: Billing details processed securely through Stripe (we do not store full payment card details)
  • Profile Information: Optional profile details you choose to provide

2.2 Information from GitHub

When you connect your GitHub account, we collect:

  • Repository data (commits, contributors, file changes)
  • Commit history and metadata
  • Repository statistics
  • Your GitHub username and profile information
  • Only data from repositories you explicitly authorize

2.3 Automatically Collected Information

  • Usage Data: Pages visited, features used, time spent on the Service
  • Device Information: Browser type, operating system, IP address
  • Cookies: We use cookies and similar technologies to maintain sessions and improve user experience
  • Analytics: Aggregated data about Service usage and performance

3. How We Use Your Information

We use collected information to:

  • Provide the Service: Generate Year in Review visualizations and statistics
  • Process Payments: Handle billing and subscriptions
  • Improve the Service: Analyze usage patterns and enhance features
  • Communicate: Send service updates, security alerts, and support messages
  • AI Processing: Generate insights and narratives about your coding activity
  • Security: Detect and prevent fraud, abuse, and security incidents
  • Legal Compliance: Meet legal obligations and enforce our Terms of Service

4. AI and Data Processing

4.1 AI-Powered Features

  • We use artificial intelligence to analyze your commit data and generate narratives
  • AI processing occurs on secure servers
  • We may use aggregated, anonymized data to improve AI models

4.2 Data Retention for AI

  • We retain necessary data to provide the Service
  • You can request deletion of your data at any time

5. How We Share Your Information

We do not sell your personal information. We may share information with:

5.1 Service Providers

  • Payment Processing: Stripe for secure payment handling
  • Cloud Hosting: AWS or similar providers for data storage and processing
  • AI Services: Third-party AI providers for generating insights
  • Analytics: Services to understand usage patterns

5.2 Legal Requirements

We may disclose information if required by law or to:

  • Comply with legal processes or government requests
  • Enforce our Terms of Service
  • Protect our rights, property, or safety
  • Prevent fraud or security issues

5.3 Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

5.4 With Your Consent

We may share information with third parties when you explicitly consent.

6. Public Content

6.1 Published Reviews

  • When you publish a Year in Review, it becomes publicly accessible via a unique URL
  • Published reviews contain information you choose to include
  • You can unpublish reviews at any time

6.2 What's Not Shared

  • Your email address and account credentials are never made public
  • Repository data remains private unless you publish a review

7. Data Security

We implement appropriate security measures to protect your information:

  • Encryption in transit (HTTPS/TLS)
  • Encryption at rest for sensitive data
  • Regular security assessments
  • Access controls and authentication
  • Secure payment processing through PCI-compliant providers

However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

8. Your Rights and Choices

8.1 Access and Control

  • Access: View your account data through your profile
  • Update: Modify your account information at any time
  • Delete: Request deletion of your account and associated data
  • Export: Request a copy of your data

8.2 GitHub Access

  • Revoke: Disconnect GitHub integration through your GitHub settings
  • Limit: Control which repositories we can access

8.3 Communications

  • Opt-out: Unsubscribe from marketing emails
  • Essential Emails: Some service-related emails cannot be disabled

8.4 Cookies

  • You can configure your browser to refuse cookies
  • Some features may not function properly without cookies

9. Third-Party Links

The Service may contain links to third-party websites. We are not responsible for the privacy practices of these sites. We encourage you to read their privacy policies.

10. Children's Privacy

The Service is not intended for users under 13 years of age. We do not knowingly collect information from children under 13. If we discover we have collected such information, we will delete it promptly.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for such transfers.

12. Data Retention

We retain your information for as long as:

  • Your account is active
  • Necessary to provide the Service
  • Required by law or for legitimate business purposes

When you delete your account, we will delete or anonymize your data within a reasonable timeframe, except where retention is required by law.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting the updated policy on this page
  • Updating the "Last Updated" date
  • Sending an email notification for significant changes

Continued use of the Service after changes constitutes acceptance of the updated policy.

14. Your California Privacy Rights

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information is collected
  • Right to delete personal information
  • Right to opt-out of the sale of personal information (we do not sell personal information)
  • Right to non-discrimination for exercising your rights

15. Your European Privacy Rights

If you are in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

  • Right to access your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent

To exercise these rights, contact us using the information below.

16. Contact Us

For questions about this Privacy Policy or to exercise your rights, contact us at:

Email: privacy@myyearinreview.dev
Website: https://myyearinreview.dev

For data protection inquiries from the EEA, you may also contact our Data Protection Officer at: dpo@myyearinreview.dev

17. Consent

By using the Service, you consent to this Privacy Policy and agree to its terms.