Privacy Policy

Last updated: February 22, 2026

1. Overview

SYKE ("we", "our") respects your privacy. This policy explains what data we collect, how we use it, and your rights regarding your information.

2. Data We Collect

Data	Purpose	Stored Where
Email address	Account authentication, billing	Firebase Auth, Firestore
Password (hashed)	Authentication	Firebase Auth (Google-managed)
Payment information	Subscription billing	Paddle (we never see your card)
License key	Feature activation	Firestore
License validation requests	Verify active subscription	Server logs (30 days)

3. Data We Do NOT Collect

• Your source code: The MCP server runs entirely on your local machine. Your code is never uploaded to our servers.
• Dependency graphs: Graph data stays on your machine.
• AI analysis results: When using AI features, requests go directly from your machine to the AI provider (e.g., Google Gemini) using your own API keys.
• Usage analytics: We do not track which files you analyze or how you use the tools.

4. Third-Party Services

We use the following third-party services:

• Firebase (Google) — Authentication, database, hosting. Firebase Privacy
• Paddle — Payment processing (Merchant of Record). Paddle Privacy

These services have their own privacy policies. We recommend reviewing them.

5. How We Use Your Data

• Authenticate your identity and manage your account
• Process payments and manage subscriptions
• Validate license keys for Pro features
• Send transactional emails (password reset, billing notifications)

We do not sell your data. We do not use your data for advertising.

6. Data Retention

• Account data is retained while your account is active.
• When you delete your account, all associated data (Firestore documents, auth record) is permanently deleted.
• Payment records may be retained by Paddle per their retention policies and legal requirements.

7. Your Rights

You have the right to:

• Access your personal data (visible in your dashboard)
• Correct your data (update email/password in settings)
• Delete your account and all associated data
• Export your data (contact us)

8. Security

We implement industry-standard security measures:

• All data is encrypted in transit (TLS/HTTPS)
• Passwords are hashed by Firebase Auth (bcrypt)
• Payment data is handled exclusively by Paddle (PCI-DSS compliant)
• Firestore security rules restrict data access to authorized users

9. Cookies

We use essential cookies only (Firebase Auth session management). We do not use tracking cookies or analytics cookies.

10. Children

The Service is not directed to children under 13. We do not knowingly collect data from children.

11. Changes

We may update this policy periodically. We will notify you of significant changes via email or through the Service.

12. Contact

For privacy questions or data requests, contact us at support@syke.cloud.