Skip to content

Privacy Policy

Effective date: 01.01.2026
Last updated: 08.01.2026
Company: Codify doo
Address: 1000 Zagreb, Croatia
Website: sproobo.com
Support: info@sproobo.com
VAT ID: HR59253184772

Summary

  • We collect only the data needed to provide the Service and support your account.
  • You control your Hetzner account and resources; we access them only to provision and operate your deployments.
  • We do not store passwords; sign-in is via Google or GitHub.
  • We encrypt infrastructure tokens at rest and avoid logging secrets, but no system is perfectly secure.
  • You can request data export or deletion by contacting info@sproobo.com.

Scope and definitions

This Privacy Policy describes how Codify doo ("Sproobo," "we," "us") collects and uses personal data when you use the Sproobo platform (the "Service"). "Customer" or "you" means the individual or entity using the Service.

Information we collect

Information you provide

  • Account data: name, email address, avatar, and OAuth provider identifier.
  • Billing data: billing contact details and subscription status from Stripe (we do not receive full card details).
  • Infrastructure credentials: your Hetzner Cloud API token (encrypted at rest).
  • Configuration data: repository URLs, branches, deployment metadata, server IPs, domains, environment variables, and project settings.
  • Support data: messages and files you send us for support.

Information we collect automatically

  • Usage data: feature usage, deployment events, server metadata, IP addresses, and timestamps.
  • Logs: application output and platform logs you choose to store or view (may include data you send to your apps). We do not log secrets such as infrastructure tokens or environment variables.
  • Device and browser data: basic device identifiers and browser information.
  • Cookies and similar technologies: described below.

Social login (Google and GitHub)

We use Google and GitHub OAuth for authentication.

  • What we receive: basic profile information such as name, email, avatar, and provider account ID.
  • What we do not receive: your Google or GitHub password or private messages.
  • What we store: the basic profile data above and your OAuth provider identifier.
  • OAuth tokens: OAUTH TOKEN STORAGE STATUS: [WE DO NOT STORE OAUTH TOKENS / WE STORE ACCESS AND REFRESH TOKENS ENCRYPTED AT REST TO MAINTAIN YOUR SESSION].
  • Revocation: you can revoke access at any time in your Google or GitHub account settings, which will stop new access tokens from being issued.

How we use information

We use your information to:

  • Provide, operate, and maintain the Service.
  • Provision and manage Hetzner resources on your instructions.
  • Authenticate users and secure accounts.
  • Process billing and manage subscriptions.
  • Send transactional emails and service notices.
  • Monitor, debug, and improve the Service.
  • Comply with legal obligations and enforce our terms.

Legal bases (EEA/UK)

When the GDPR applies, we rely on:

  • Contract necessity: to provide the Service and fulfill your requests.
  • Legitimate interests: to secure, maintain, and improve the Service.
  • Consent: for optional analytics or marketing cookies (where required).
  • Legal compliance: to meet legal and regulatory obligations.

How we share information

We share personal data only as needed to operate the Service, including with:

  • Infrastructure providers: Hetzner Cloud to provision and operate your servers.
  • Payment processors: Stripe for billing and subscription management.
  • Email providers: for transactional messages.
  • Analytics providers (optional): to understand product usage.
  • Error monitoring providers (optional): to diagnose reliability issues.
  • Legal and safety: when required by law or to protect rights, safety, and security.

International transfers

We are based in Croatia (EU). Some service providers may process data outside the EEA/UK. When transfers occur, we rely on appropriate safeguards such as Standard Contractual Clauses or equivalent mechanisms.

Data retention

We keep personal data for as long as your account is active and as needed to provide the Service. We may retain certain data for a limited period to comply with legal obligations, resolve disputes, and enforce agreements. Backups are kept for a limited time and are overwritten on a rolling basis.

Security

We use administrative, technical, and organizational safeguards appropriate to the nature of the data. This includes encryption at rest for infrastructure tokens, least-privilege access controls, and redaction of secrets from logs. No system is perfectly secure, and we cannot guarantee absolute security.

Cookies and tracking

We use cookies and similar technologies for:

  • Necessary: authentication, security, and core functionality.
  • Analytics (optional): to measure usage and improve the Service.
  • Marketing (optional): to evaluate campaigns or show relevant content.

You can control cookies through our cookie banner (if enabled) and your browser settings. Disabling certain cookies may impact functionality.

Your choices

You can update account information, manage integrations, and request export or deletion of your data by contacting info@sproobo.com. You can also disconnect your OAuth provider at any time.

GDPR rights (EEA/UK)

If you are in the EEA or UK, you have the right to access, correct, delete, restrict, or object to processing of your personal data, and the right to data portability. You may withdraw consent at any time where we rely on consent. You also have the right to lodge a complaint with your local supervisory authority.

Third-party services and your responsibility

The Service integrates with third-party services you choose to use, including Hetzner. Your use of those services is governed by their own terms and privacy policies. You remain responsible for the data you deploy and process on your own infrastructure.

Children's privacy

The Service is not intended for children under 16. We do not knowingly collect personal data from children.

Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we will provide notice through the Service or by email.

Contact us

For privacy questions or requests, contact us at info@sproobo.com