Privacy Policy

Last updated: June 4, 2026

This Privacy Policy explains what information Sinatra collects, how we use it, and the choices you have. It applies to our website, app, and the coding agent (together, the "Service").

1. Information we collect

• Account information. Your name, email, organization, and similar details when you sign up.
• Integration and repository data. When you connect a tool such as GitHub or Linear, we access the issues, repositories, and related content needed to do the work you assign — including the source code Sinatra reads and changes.
• Credentials you provide. If you connect your own model keys or a provider subscription, we store them in encrypted form so the Service can use them on your behalf.
• Usage and log data. Technical information about how you use the Service, such as activity, timestamps, and diagnostic logs.
• Payment information. On a paid plan, our payment processor handles your payment details. We do not store full card numbers.

2. How we use information

We use the information we collect to:

• operate the Service and run the agent on the tasks you assign;
• authenticate you and secure your account;
• provide support and respond to you;
• process billing for paid plans;
• monitor for abuse and keep the Service safe and reliable;
• maintain and improve the Service.

3. How we share information

We share information only as needed to run the Service:

• with third-party model providers and cloud infrastructure that process tasks on your behalf;
• with our payment processor, to handle billing;
• when required by law, or to protect our rights, our users, or the Service;
• as part of a business transfer, such as a merger or acquisition.

We do not sell your personal information.

4. Your code and credentials

We treat the code and credentials you connect as sensitive. Sinatra works in isolated, ephemeral sandboxes: it checks out your repository, does the task, and tears the sandbox down when it is finished. Credentials you provide are stored encrypted and used only to run the Service for you. We do not use your code or content to train our own models, and we do not sell it.

5. Data retention

We keep information for as long as your account is active or as needed to provide the Service, and longer only where we need to meet legal, accounting, or security obligations. Task sandboxes are ephemeral and torn down after each run. You can ask us to delete your information, and we will do so unless we are required to keep it.

6. Security

We use reasonable measures to protect your information, including encryption in transit and at rest for sensitive data and access controls that limit who and what can reach it. No service can promise perfect security, and to the fullest extent permitted by law we are not liable for unauthorized access, loss, or disclosure beyond what the law requires.

7. Your choices

You can access or update your account information, disconnect integrations, revoke any keys you have connected, and close your account at any time. To make a request about your information, contact us at contact@sinatra.dev.

8. Where information is processed

We and the providers we use may process and store information in the countries where we or they operate. By using the Service, you understand that your information may be processed in locations other than where you live.

9. Children

The Service is not intended for children, and we do not knowingly collect information from anyone under the age required to consent in their country. If you believe a child has provided us information, contact us and we will remove it.

10. Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will revise the date at the top. If the changes are significant, we will take reasonable steps to let you know.

11. Contact

Questions about privacy or your information? Reach us at contact@sinatra.dev.