Privacy Policy

This Privacy Policy explains how SentinelQA collects, uses, stores, and discloses information when you use the SentinelQA website, cloud dashboard, API endpoints, CI uploader, and related support channels.

If you use SentinelQA on behalf of an organization, your organization may control certain data submitted to the service, including CI artifacts, test metadata, and workspace settings.

Account and identity data: name, email address, password hash, GitHub OAuth account identifiers, email verification status, session records, and organization membership records.

Billing and transactional data: company name, selected plan, subscription status, Stripe customer and subscription identifiers, billing events, and limited checkout metadata.

Service usage and security data: IP address or forwarded IP used for login, registration, password reset, anti-abuse checks, and basic operational logging.

CI run and artifact data: project names, branch names, commit or workflow metadata, run history, test results, failure summaries, and uploaded artifacts such as traces, screenshots, videos, logs, DOM captures, and related object-storage references.

Support and communications data: emails you send to support and messages we send for account verification, password reset, and service operations.

Website and product telemetry: cookie-based session state and limited analytics data, including aggregated usage measurements where enabled.

We use information to provide and secure the service, authenticate users, create and manage organizations and projects, process billing, store and retrieve CI debugging artifacts, generate dashboards, enable AI summaries, respond to support requests, and detect abuse or misuse.

We also use information to maintain the reliability, security, and performance of SentinelQA, including rate limiting, fraud prevention, troubleshooting, and internal analytics.

If AI summary or failure-analysis features are enabled, selected failure context may be processed to generate summaries or debugging assistance. That context can include test names, error messages, stack traces, logs, screenshots, DOM captures, and related metadata needed for the requested feature.

You are responsible for deciding what data your CI systems upload. Avoid including secrets, regulated personal data, or other data you do not want processed by AI or external subprocessors.

SentinelQA uses cookies or similar storage for authentication, session continuity, security, product functionality, and aggregated analytics across public website flows and selected product journeys.

Disabling certain cookies may prevent sign-in or other core product features from working correctly.

We share information with service providers that help operate SentinelQA, such as hosting, database, storage, email delivery, billing, bot protection, error monitoring, analytics, and AI infrastructure providers.

We may disclose information when required by law, to enforce our agreements, to protect the rights, security, and integrity of SentinelQA or others, or in connection with a merger, financing, acquisition, or sale of assets.

We retain account, billing, and operational records for as long as reasonably necessary to provide the service, comply with legal obligations, resolve disputes, and enforce agreements.

CI artifacts and related metadata are retained according to your plan, product configuration, or operational retention settings. Some artifacts may also be deleted earlier based on object-storage lifecycle policies or workspace cleanup routines.

We use administrative, technical, and organizational measures designed to protect information, including password hashing, signed sessions, access controls, short-lived artifact access tokens, and operational monitoring. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

Depending on your jurisdiction, you may have rights to access, correct, delete, or export certain personal information, and to object to or restrict certain processing. Where your organization is the controller of workspace data, requests may need to be directed through that organization first.

To make a privacy request, contact [email protected].

SentinelQA is intended for business and professional use and is not directed to children under 13. If you believe a child has provided personal information to SentinelQA, contact us so we can review and delete it where appropriate.

Your information may be processed in countries other than your own, including where SentinelQA or its service providers maintain operations. Where required, we use reasonable measures intended to support lawful cross-border transfers.

We may update this Privacy Policy from time to time. If we make a material change, we will update the effective date on this page and may provide additional notice where appropriate.